CVE-2026-26231
CVE-2026-26231CVE-2026-26231
Description
Gitea versions up to and including 1.26.1 allow the Allow edits from maintainers permission path to authorize commits to repositories that the user can read but should not be able to write.
Scoring
| CVSS | 8.5 () |
| Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:N |
| Last modified | 2026-07-03 |