Lucene search
+L

4 matches found

github
github
added 2026/02/06 6:14 p.m.15 views

Gogs has arbitrary file read/write via Path Traversal in Git hook editing

Vulnerability Description In the endpoint: /username/reponame/settings/hooks/git/:name the :name parameter: Is URL-decoded by macaron routing, allowing decoded slashes / Is then passed directly to: go git.Repository.Hook"customhooks", name which internally resolves the path as: go...

6.5CVSS5.5AI score0.00456EPSS
Exploits1References5Affected Software1
vulnrichment
vulnrichment
added 2026/02/06 5:46 p.m.3 views

CVE-2026-23633 Gogs has arbitrary file read/write via path traversal in Git hook editing

Gogs is an open source self-hosted Git service. In version 0.13.3 and prior, there is an arbitrary file read/write via path traversal in Git hook editing. This issue has been patched in versions 0.13.4 and 0.14.0+dev...

6.5CVSS5.4AI score0.00456EPSS
Exploits1References1
osv
osv
added 2026/02/06 5:46 p.m.7 views

CVE-2026-23633 Gogs has arbitrary file read/write via path traversal in Git hook editing

Gogs is an open source self-hosted Git service. In version 0.13.3 and prior, there is an arbitrary file read/write via path traversal in Git hook editing. This issue has been patched in versions 0.13.4 and 0.14.0+dev...

6.5CVSS5.4AI score0.00456EPSS
Exploits1References3
cnnvd
cnnvd
added 2026/02/06 12:0 a.m.10 views

Gogs 路径遍历漏洞

Gogs Go Git Service is a Go-based self-service Git hosting service developed by the Gogs team. It supports creating and migrating public/private repositories, as well as adding and removing repository collaborators. Gogs versions prior to 0.13.3 have a path traversal vulnerability; this...

6.5CVSS5.9AI score0.00456EPSS
Exploits1References1
Rows per page
Query Builder