CVE-2018-20303
Gogs (Go Git Service) contains a directory traversal vulnerability in the file-upload path (pkg/tool/path.go) prior to version 0.11.82.1218 that can allow an attacker to create files under data/sessions on the server. The issue is documented as CVE-2018-20303 and is related to CVE-2018-18925 in b...