CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Gitea: >> Gitea >> 1.5.3 Security Vulnerabilities

CVE-2018-18926

Gitea before 1.5.4 allows remote code execution because it does not properly validate session IDs. This is related to session ID handling in the go-macaron/session code for Macaron.

CVSS Score

9.8

EPSS Score

0.071

Published

2018-11-04

Page 3

Vulnerabilities

Vulnerable Software

Gitea: >> Gitea >> 1.5.3 Security Vulnerabilities

Products

Pricing

Contact Us