CVE-2021-29134

EPSS 0.34% · P57 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-29134

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The avatar middleware in Gitea before 1.13.6 allows Directory Traversal via a crafted URL.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Gitea 路径遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Gitea是Gitea社区的一个基于Go开发的轻量型git服务。 Gitea 1.13.6之前版本存在安全漏洞，该漏洞源于该镜像中间件允许通过特制的 URL 进行目录遍历。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2021-29134

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-29134

请登录查看更多情报信息。

https://github.com/go-gitea/gitea/releases/tag/v1.13.6x_refsource_MISC
https://github.com/go-gitea/gitea/pull/15125/filesx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2021-29134

Same Patch Batch · n/a · 2022-03-15 · 45 CVEs total

CVE-2022-27193	6.1 MEDIUM	CVRF-CSAF-Converter 代码问题漏洞
CVE-2022-25488		Atom CMS SQL注入漏洞
CVE-2022-25492		HMS SQL注入漏洞
CVE-2022-25491		HMS SQL注入漏洞
CVE-2022-25493		HMS 跨站脚本漏洞
CVE-2022-25497		CuppaCMS 安全漏洞
CVE-2022-25498		CuppaCMS 代码注入漏洞
CVE-2021-45010		Tiny File Manager路径遍历漏洞
CVE-2021-45848		Nicotine+安全漏洞
CVE-2022-25495		CuppaCMS 代码问题漏洞
CVE-2022-25489		Atom CMS 跨站脚本漏洞
CVE-2022-25490		HMS SQL注入漏洞
CVE-2022-25487		Atom CMS 代码问题漏洞
CVE-2022-25486		CuppaCMS 安全漏洞
CVE-2022-25485		CuppaCMS 安全漏洞
CVE-2022-23989		Stormshield Network Security 安全漏洞
CVE-2022-26206		多款TOTOLINK产品操作系统命令注入漏洞
CVE-2022-26208		多款TOTOLINK产品操作系统命令注入漏洞
CVE-2022-26207		多款TOTOLINK产品操作系统命令注入漏洞
CVE-2022-26210		多款TotoLink产品操作系统命令注入漏洞

Showing top 20 of 45 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2021-29134

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-29134

I. Basic Information for CVE-2021-29134

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-29134

III. Intelligence Information for CVE-2021-29134

Same Patch Batch · n/a · 2022-03-15 · 45 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-29134

Leave a comment