{
"$type": "site.standard.document",
"bskyPostRef": {
"cid": "bafyreiftpbq23mxjgapxckhx764gowegafpbpfshl6qcbofadpc6ljlqjm",
"uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mmtkdxjm2od2"
},
"coverImage": {
"$type": "blob",
"ref": {
"$link": "bafkreihk3f4r7b5epaemi7y5zv4ambiipmxfswra6a3ixwrymtiphr66fq"
},
"mimeType": "image/jpeg",
"size": 165368
},
"path": "/2026/05/gitea-vulnerability-exposes-private.html",
"publishedAt": "2026-05-27T10:06:32.000Z",
"site": "https://thehackernews.com",
"textContent": "Cybersecurity researchers have disclosed a security flaw in Gitea, an open-source, self-hosted platform for version control, that allows unauthenticated remote attackers to pull private container images from Gitea deployments without requiring an account, password, or other credentials.\n\nThe vulnerability, tracked as CVE-2026-27771 (CVSS score: N/A), affects all versions of Gitea prior to 1.26.2",
"title": "Gitea Vulnerability Exposes Private Container Images without Authentication"
}