#gogs

🖼️

0

Gogs Git Service Faces Unpatched RCE That Turns Any User Into Server Owner

WebProNews·Sara Donnelly·3 days ago

#webpronews #gogs #repository #rebase #attacker #pull

An unpatched 9.4-severity flaw in the popular self-hosted Git service Gogs lets any authenticated user run arbitrary code by injecting --exec into git rebase via a malicious branch name in a pull request.…

15s

No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out

📰

0

No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out

www.theregister.com - Articles·No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out·3 days ago

#BrHnrTOh

#theregister #gogs #rebase #burgess #user #flaw

Researcher reported the vuln in March. Maintainers haven't responded to his messages since

15s

Gogs Zero-Day Exposes Servers to Remote Code Execution: What Security Teams Need to Know

🖼️

0

Gogs Zero-Day Exposes Servers to Remote Code Execution: What Security Teams Need to Know

DEV Community: infosec·Security Cyber·3 days ago

#uhWyUAD2

#dev #gogs #zero #exposes #servers #remote

Gogs Zero-Day Exposes Servers to Remote Code Execution This is worth understanding,...

15s

Critical Unpatched RCE Vulnerability Discovered in Gogs Git Service

🖼️

0

Critical Unpatched RCE Vulnerability Discovered in Gogs Git Service

DEV Community: infosec·BeyondMachines·3 days ago

#vL2E0lgW

#dev #gogs #full #server #beyondmachines #photo

Gogs is reported to have a critical unpatched authenticated RCE vulnerability (CVSS 9.4) that allows users to execute arbitrary code via malicious branch names during rebase operations.…

15s

Menu

Gogs Git Service Faces Unpatched RCE That Turns Any User Into Server Owner

No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out

Gogs Zero-Day Exposes Servers to Remote Code Execution: What Security Teams Need to Know

Critical Unpatched RCE Vulnerability Discovered in Gogs Git Service