CVE-2026-26232
EUVD-2026-4162803.07.2026, 21:16
Gitea versions before 1.25.5 do not consistently enforce OAuth2 authorization code expiry and single-use behavior during token exchange.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.