First published: Thu Mar 24 2022(Updated: )
Open Redirect on login in GitHub repository go-gitea/gitea prior to 1.16.5.
Credit: security@huntr.dev security@huntr.dev
Affected Software | Affected Version | How to fix |
---|---|---|
Gitea Gitea | <1.16.5 | |
go/code.gitea.io/gitea | <1.16.5 | 1.16.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-1058 is an open redirect vulnerability on the login page in the GitHub repository go-gitea/gitea prior to version 1.16.5.
CVE-2022-1058 has a severity score of 6.1 (High).
CVE-2022-1058 affects Gitea versions prior to 1.16.5.
To fix CVE-2022-1058, update your Gitea installation to version 1.16.5 or later.
You can find more information about CVE-2022-1058 in the GitHub commit and the huntr.dev bounty links: [GitHub Commit](https://github.com/go-gitea/gitea/commit/e3d8e92bdc67562783de9a76b5b7842b68daeb48), [huntr.dev Bounty](https://huntr.dev/bounties/4fb42144-ac70-4f76-a5e1-ef6b5e55dc0d).