CVE-2024-39933

🗓️ 04 Jul 2024 00:00:00Reported by mitreType

Gogs 0.13.0 allows argument injection during new release taggin

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 13
OSV	GHSA-8MM6-WMPP-MMM3 Duplicate Advisory: Gogs allows argument injection during the tagging of a new release	4 Jul 202418:31	–	osv
OSV	CVE-2024-39933	4 Jul 202416:15	–	osv
OSV	GHSA-M27M-H5GJ-WWMG Gogs allows argument Injection when tagging new releases	23 Dec 202420:38	–	osv
OSV	GO-2024-2972 Gogs allows argument injection during the tagging of a new release in github.com/gogs/gogs	9 Jul 202419:34	–	osv
NVD	CVE-2024-39933	4 Jul 202416:15	–	nvd
CVE	CVE-2024-39933	4 Jul 202416:15	–	cve
Github Security Blog	Gogs allows argument Injection when tagging new releases	23 Dec 202420:38	–	github
Vulnrichment	CVE-2024-39933	4 Jul 202400:00	–	vulnrichment
Veracode	Command Injection	5 Jul 202407:02	–	veracode
AlpineLinux	CVE-2024-39933	4 Jul 202416:15	–	alpinelinux

Source	Link
sonarsource	www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/
github	www.github.com/gogs/gogs/releases

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Jul 2024 00:00Current

CVSS37.7

EPSS0.00081