CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

CVE-2026-52801

Gogs is an open source self-hosted Git service. Prior to 0.14.3, the Gogs Mirror Settings functionality provide an alternative way from the well protected New Migration functionality for any authenticated users to import local repositories. This issue stems from a lack of validation of SaveAddres...

8.1CVSS0.00569EPSS

Exploits0References4

CVE•added 2 days ago•14 views

CVE-2026-52801

Gogs contains CVE-2026-52801 where Mirror Settings lacks validation of the SaveAddress function, enabling an authenticated user to import local repositories from the server filesystem. The issue stems from insufficient input validation in Mirror Settings, as opposed to the secure New Migration fl...

8.1CVSS5.9AI score0.00569EPSS

Exploits0References4

RedhatCVE•added 2026/01/09 10:9 a.m.•3 views

CVE-2019-11228

repo/setting.go in Gitea before 1.7.6 and 1.8.x before 1.8-RC3 does not validate the form.MirrorAddress before calling SaveAddress...

7.5CVSS6.8AI score0.01349EPSS

Exploits0References1

Github Security Blog•added 2022/02/15 1:57 a.m.•23 views

Gitea Improper Input Validation

repo/setting.go in Gitea before 1.7.6 and 1.8.x before 1.8-RC3 does not validate the form.MirrorAddress before calling SaveAddress. Specific Go Packages Affected github.com/go-gitea/gitea/models...

7.5CVSS7.3AI score0.01349EPSS

Exploits0References6Affected Software1

NVD•added 2019/04/15 12:31 p.m.•19 views

CVE-2019-11228

repo/setting.go in Gitea before 1.7.6 and 1.8.x before 1.8-RC3 does not validate the form.MirrorAddress before calling SaveAddress...

7.5CVSS7.5AI score0.01349EPSS

Exploits0References2

Rows per page