Affected by GO-2022-0310
and 15 other vulnerabilities
GO-2022-0310: Capture-replay in Gitea in code.gitea.io/gitea
GO-2022-0353: Path Traversal in Gitea in code.gitea.io/gitea
GO-2022-0442: Arbitrary file deletion in gitea in code.gitea.io/gitea
GO-2022-0450: Shell command injection in gitea in code.gitea.io/gitea
GO-2022-0609: Gitea Missing Authorization vulnerability in code.gitea.io/gitea
GO-2022-0612: Stored Cross-site Scripting in gitea in code.gitea.io/gitea
GO-2022-0830: Denial of Service in Gitea in code.gitea.io/gitea
GO-2022-0832: Cross-site Scripting in Gitea in code.gitea.io/gitea
GO-2022-1065: Gitea vulnerable to Argument Injection in code.gitea.io/gitea
GO-2023-1894: code.gitea.io/gitea Open Redirect vulnerability
GO-2023-1971: Gogs and Gitea SSRF Vulnerability in code.gitea.io/gitea
GO-2023-1999: Gitea erroneous repo clones in code.gitea.io/gitea
GO-2024-2757: Buffer Overflow in gitea in code.gitea.io/gitea
GO-2024-2769: Gitea allowed assignment of private issues in code.gitea.io/gitea
GO-2024-3056: Gitea Cross-site Scripting Vulnerability in code.gitea.io/gitea
package
Version:
v1.10.0-rc2
Opens a new window with list of versions in this module.
Published: Oct 30, 2019
License: MIT
Opens a new window with license information.
Imports: 15
Opens a new window with list of imports.
Imported by: 64
Opens a new window with list of known importers.
Documentation
¶
Package v1 Gitea API.
This documentation describes the Gitea API.
Schemes: http, https
BasePath: /api/v1
Version: 1.1.1
License: MIT http://opensource.org/licenses/MIT
Consumes:
- application/json
- text/plain
Produces:
- application/json
- text/html
Security:
- BasicAuth :
- Token :
- AccessToken :
- AuthorizationHeaderToken :
- SudoParam :
- SudoHeader :
SecurityDefinitions:
BasicAuth:
type: basic
Token:
type: apiKey
name: token
in: query
AccessToken:
type: apiKey
name: access_token
in: query
AuthorizationHeaderToken:
type: apiKey
name: Authorization
in: header
description: API tokens must be prepended with "token" followed by a space.
SudoParam:
type: apiKey
name: sudo
in: query
description: Sudo API request as the user provided as the key. Admin privileges are required.
SudoHeader:
type: apiKey
name: Sudo
in: header
description: Sudo API request as the user provided as the key. Admin privileges are required.
swagger:meta
RegisterRoutes registers all v1 APIs routes to web application.
FIXME: custom form error response
Source Files
¶
Directories
¶
Click to show internal directories.
Click to hide internal directories.