4 matches found
CVE-2020-14958
In Gogs 0.11.91, MakeEmailPrimary in models/usermail.go lacks a "not the owner of the email" check...
CVE-2020-14958
In Gogs 0.11.91, MakeEmailPrimary in models/usermail.go lacks a "not the owner of the email" check...
CVE-2020-14958
CVE-2020-14958 affects Gogs 0.11.91. The issue is in the MakeEmailPrimary function (models/user_mail.go) where there is no check to ensure the requester is not the owner of the email, i.e., ownership verification is missing. This implies potential improper permissions when selecting a primary ema...
Gogs < 0.12 Multiple Vulnerabilities
Gogs is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribu...