Gitea 1.26.2 allows unauthorized users to access labels of private organizations.
History

Mon, 06 Jul 2026 23:15:00 +0000

Type Values Removed Values Added
First Time appeared Gitea
Gitea gitea Open Source Git Server
Vendors & Products Gitea
Gitea gitea Open Source Git Server

Fri, 03 Jul 2026 20:45:00 +0000

Type Values Removed Values Added
Description Gitea 1.26.2 allows unauthorized users to access labels of private organizations.
Title Gitea private organization labels are visible to unauthorized users
Weaknesses CWE-200
CWE-862
References

cve-icon MITRE

Status: PUBLISHED

Assigner: Gitea

Published: 2026-07-03T20:19:32.042Z

Updated: 2026-07-03T20:19:32.042Z

Reserved: 2026-03-03T03:26:00.351Z

Link: CVE-2026-25038

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.