CVE-2026-28744
EUVD-2026-4164403.07.2026, 21:17
Gitea versions up to and including 1.26.1 allow Git smart HTTP requests authenticated with bearer tokens to bypass repository token scope checks.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.