CVE-2026-13540 MEDIUM

CVE-2026-13540: GitBucket RepositoryCreationService.scala Git.cloneRepository.setURI server-side request forgery

Vendor N/A

Product GitBucket

Weakness CWE-918 · SSRF

Published June 29, 2026

Last update June 29, 2026

View on NVD All CVEs

CVSS base score

5.3/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A security flaw has been discovered in GitBucket up to 4.46.1. This affects the function Git.cloneRepository.setURI of the file src/main/scala/gitbucket/core/service/RepositoryCreationService.scala. Performing a manipulation of the argument url results in server-side request forgery. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks. The patch is named 487a9b980f56aa73b6a044b1e86a92eed5043215. To fix this issue, it is recommended to deploy a patch.

Key dates

02Disclosure timeline

June 29, 2026 CVE published

June 29, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2026-13540 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/918.html

Related vulnerabilities

Identifiers

CVE CVE-2026-13540

CWE CWE-918

CVSS 5.3 / MEDIUM

Affected versions

Vendor N/A

Product GitBucket

Affected 4.46.0

Vendor N/A

Product GitBucket

Affected 4.46.1

CVE-2026-13540: GitBucket RepositoryCreationService.scala Git.cloneRepository.setURI server-side request forgery

01Description

02Disclosure timeline

03References

04Related CVE