Understanding CVE-2026-22555: Unauthorized Repository Forking in Gitea
CVE-2026-22555 is a high-severity vulnerability in Gitea, a popular open-source Git server, that allows API users to fork a repository into an organization without proper authorization. This can lead to exposure of organization secrets. The vulnerability has a CVSS score of 8.1 and affects Gitea versions before 1.26.0.