2 matches found
CVE-2026-52809
Gogs is an open source self-hosted Git service. Prior to 0.14.3, password-reset tokens are generated using conf.Auth.ActivateCodeLives the account-activation lifetime, not conf.Auth.ResetPasswordCodeLives. The token lifetime is baked into the token itself at generation time and is re-extracted fr...
CVE-2026-52809
creationtimestamp| type| source ---|---|--- 2026-06-19 02:19:01+00:00| published-proof-of-concept| https://github.com/gogs/gogs/security/advisories/GHSA-5c3f-6486-3g7g...