Notification API Vulnerability in Gitea by Gitea
CVE-2026-58419
Currently unrated
What is CVE-2026-58419?
The Notification API in Gitea has been found to expose private issue metadata even after access has been revoked. This vulnerability could lead to unauthorized information exposure, allowing users to gain insights into sensitive data that should not be accessible. It is essential for administrators to be aware of this flaw and apply updates to protect their Gitea instances from potential misuse.
Affected Version(s)
Gitea Open Source Git Server 1.26.2
