News

Critical Gitea Docker Bug Under Active Exploitation Exposes Repositories and Secrets

  • Pierluigi Paganini--Securityaffairs.com
  • published date: 2026-07-07 21:16:29 UTC

Attackers are exploiting a critical Gitea flaw (CVE-2026-20896) that bypasses authentication with a single HTTP header, exposing repositories and sensitive data. Sysdig researchers warn that attackers are actively exploiting a critical authentication bypass f…

Critical Gitea Docker Bug Under Active Exploitation Exposes Repositories and Secrets Sysdig researchers warn that attackers are actively exploiting a critical authentication bypass flaw, tracked as … [+2883 chars]