Exploit for Path Traversal in Gogs

CVE-2025-8110 PoC Python proof-of-concept script for triggerin...

CVE-2026-8110

Incorrect permissions assignment in the agent of Ivanti Endpoint Manager before version 2024 SU6 allows a local authenticated attacker to escalate their privileges...

Security Advisory Ivanti Endpoint Manager (EPM) May 2026

Security Advisory Ivanti Endpoint Manager EPM CVE-2026-8109, CVE-2026-8110, CVE-2026-811 Summary Ivanti has released updates for Ivanti Endpoint Manager which addresses one Medium severity and two High severity vulnerabilities. Successful exploitation could lead to information disclosure, privile...

CVE-2026-8110

creationtimestamp| type| source ---|---|--- 2026-05-12 08:04:32+00:00| seen| https://www.acn.gov.it/portale/w/ivanti-may-security-update-1 2026-05-14 02:55:50+00:00| seen| https://ccb.belgium.be/advisories/warning-ivanti-has-released-security-updates-address-vulnerabilities-affecting-several...

Exploit for Path Traversal in Gogs

CVE-20...

Exploit for Path Traversal in Gogs

CVE-2025-8110 — Gogs Symlink Traversal → RCE Overview C...

Gogs <= 0.13.3 Multiple Vulnerabilities

According to its self-reported version, the instance of Gogs running on the remote host is prior or equal to 0.13.3. It is, therefore, affected by multiple vulnerabilities, including: - Improper Symbolic link handling in the PutContents API in Gogs allows Local Execution of Code. CVE-2025-8110 -...

CVE-2025-8110

Improper Symbolic link handling in the PutContents API in Gogs allows Local Execution of Code...

Exploit for CVE-2025-8110

CVE-2025-8110 Improper Symbolic link handling in the PutCont...

Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks

A high-severity unpatched security vulnerability in Gogs has come under active exploitation, with more than 700 compromised instances accessible over the internet, according to new findings from Wiz. The flaw, tracked as CVE-2025-8110 CVSS score: 8.7, is a case of file overwrite in the file updat...

CVE-2025-8110

creationtimestamp| type| source ---|---|--- 2025-12-10 15:07:31+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115695894618278419 2025-12-10 15:37:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7nfazcxjj2g 2025-12-10 17:26:06+00:00| seen|...

Gogs 0-Day Exploited in the Wild

Wiz Threat Research has observed exploitation in-the-wild of CVE-2025-8110...

CVE-2017-8110

www.modified-shop.org modified eCommerce Shopsoftware 2.0.2.2 rev 10690 has XXE in api/it-recht-kanzlei/api-it-recht-kanzlei.php...

CVE-2024-36518

Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in attack surface analyzer's dashboard...

RockyLinux 9 : containernetworking-plugins (RLSA-2024:8110)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:8110 advisory. encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion CVE-2024-34156 Tenable...

Yokogawa Dual-redundant Platform for Computer (PC2CKM)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low attack complexity Vendor : Yokogawa Equipment : Dual-redundant Platform for Computer PC2CKM Vulnerability : Unchecked Return Value 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an...

CVE-2024-8110

creationtimestamp| type| source ---|---|--- 2024-09-17 04:44:46+00:00| seen| https://t.me/cvedetector/5793 2024-09-25 19:20:43+00:00| seen| https://t.me/icscert/920...

CVE-2024-8110

Denial of Service DoS vulnerability has been found in Dual-redundant Platform for Computer. If a computer on which the affected product is installed receives a large number of UDP broadcast packets in a short period, occasionally that computer may restart. If both the active and standby computers...

ManageEngine ADAudit Plus < Build 8110 Multiple Vulnerabilities

The version of ManageEngine ADAudit Plus installed on the remote host is prior to build 8110. It is, therefore, affected by multiple vulnerabilities. - Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in attack surface analyzer's export option...

CVE-2024-5487

Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in attack surface analyzer's export option...