2 matches found
Gogs Remote Code Execution Vulnerability
Gogs aka Go Git Service is a Go-based self-service Git hosting service developed by the Gogs team, which supports creating and migrating public/private repositories, adding and removing repository collaborators and so on. A security vulnerability exists in Gogs version 0.11.66, which can be...
PT-2018-14725 · Go Gitea · Gogs
Name of the Vulnerable Software and Affected Versions: Gogs version 0.11.66 Description: The issue allows remote code execution due to improper validation of session IDs. This can be exploited through a ".." session-file forgery in the file session provider, specifically in the file.go file. The...