3 matches found
Gogs < 0.12.9 Multiple Vulnerabilities
Gogs is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribu...
CVE-2022-31038 XSS vulnerability in repository issue list in Gogs
Gogs is an open source self-hosted Git service. In versions of gogs prior to 0.12.9 DisplayName does not filter characters input from users, which leads to an XSS vulnerability when directly displayed in the issue list. This issue has been resolved in commit 155cae1d which sanitizes DisplayName...
CVE-2022-31038
CVE-2022-31038 affects the Gogs self-hosted Git service. Versions prior to 0.12.9 allow an XSS vulnerability in the issue list caused by DisplayName not filtering user input when rendered. The issue is resolved by commit 155cae1d which sanitizes DisplayName before display. All users are advised t...