Patch now! Weeks after being addressed, hackers are targeting a critical Gitea vulnerability

CVE-2026-20896, a bypass authentication flaw in a popular self-hosted DevOps platform, was patched on June 21, but attacks are ongoing.