CVE-2026-26231

CVE-2026-26231CVE-2026-26231

Description

Gitea versions up to and including 1.26.1 allow the Allow edits from maintainers permission path to authorize commits to repositories that the user can read but should not be able to write.

Scoring

CVSS 8.5 ()
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:N
Last modified2026-07-03
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.