Information Exposure Affecting github.com/go-gitea/gitea/models Open this link in a new tab package, versions <1.5.1
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
10 Oct 2018
24 Aug 2018
How to fix?
github.com/go-gitea/gitea/models to version 1.5.1 or higher.
github.com/go-gitea/gitea/models is a self-hosted git service.
Affected versions of this package are vulnerable to Information Exposure of users private email addresses. A malicious user may watch a repository to receive email notifications. Emails received contain the other recipients even if they have the email set as private.