Vulnerability in Gitea Open Source Git Server

CVE-2026-27660

Gitea versions before 1.25.5 allow draft release data or attachments to be accessed without the required write permission.

Affected products

Weakness classification (CWE)

References