Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-68942
CVE-2025-68942
Gitea before 1.22.2 allows XSS because the search input box (for creating tags and branches) is v-html instead of v-text.
Published Dec 27, 2025
https://github.com/advisories/GHSA-898p-hh3p-hf9r
CVSS Score
Medium
5.1
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
golang
code.gitea.io/gitea
v1.20.0-rc0
golang
code.gitea.io/gitea
v1.20.0-rc1
golang
code.gitea.io/gitea
v1.20.0-rc2
golang
code.gitea.io/gitea
v1.20.0
golang
code.gitea.io/gitea
v1.20.1
golang
code.gitea.io/gitea
v1.20.2
golang
code.gitea.io/gitea
v1.20.3
golang
code.gitea.io/gitea
v1.20.4
golang
code.gitea.io/gitea
v1.20.5
golang
code.gitea.io/gitea
v1.20.6
golang
code.gitea.io/gitea
v1.21.0-dev
golang
code.gitea.io/gitea
v1.21.0-rc0
golang
code.gitea.io/gitea
v1.21.0-rc1
golang
code.gitea.io/gitea
v1.21.0-rc2
golang
code.gitea.io/gitea
v1.21.0
golang
code.gitea.io/gitea
v1.21.10
golang
code.gitea.io/gitea
v1.21.11
golang
code.gitea.io/gitea
v1.21.1
golang
code.gitea.io/gitea
v1.21.2
golang
code.gitea.io/gitea
v1.21.3
golang
code.gitea.io/gitea
v1.21.4
golang
code.gitea.io/gitea
v1.21.5
golang
code.gitea.io/gitea
v1.21.6
golang
code.gitea.io/gitea
v1.21.7
golang
code.gitea.io/gitea
v1.21.8
golang
code.gitea.io/gitea
v1.21.9
golang
code.gitea.io/gitea
v1.22.0-dev
golang
code.gitea.io/gitea
v1.22.0-rc0
golang
code.gitea.io/gitea
v1.22.0-rc1
golang
code.gitea.io/gitea
v1.22.0
golang
code.gitea.io/gitea
v1.22.1
golang
code.gitea.io/gitea
v1.23.0-dev
1-32 of 32
CVE-2025-68942 | Components Impacted | Sonatype Guide | Sonatype Guide
