General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-68941 | Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope limited to public re… | Medium (4.9) | 2025-12-26 | General-Purpose |
| CVE-2025-68940 | In Gitea before 1.22.5, branch deletion permissions are not adequately enforced after merging a pull request. | Low (3.1) | 2025-12-26 | General-Purpose |
| CVE-2025-68939 | Gitea before 1.23.0 allows attackers to add attachments with forbidden file extensions by editing an attachment name vi… | High (8.2) | 2025-12-26 | General-Purpose |
| CVE-2025-15097 | A vulnerability was found in Alteryx Server. Affected by this issue is some unknown functionality of the file /gallery/… | High (7.3) | 2025-12-26 | General-Purpose |
| CVE-2025-15095 | A security vulnerability has been detected in postmanlabs httpbin up to 0.6.1. This affects an unknown function of the … | Low (3.5) | 2025-12-26 | General-Purpose |