Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Gogs
(Gogs)| Repositories | https://github.com/gogs/gogs |
| #Vulnerabilities | 23 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2018-08-08 | CVE-2018-15193 | A CSRF vulnerability in the admin panel in Gogs through 0.11.53 allows remote attackers to execute admin operations via a crafted issue / link. | Gogs | 8.8 | ||
| 2018-08-08 | CVE-2018-15192 | An SSRF vulnerability in webhooks in Gitea through 1.5.0-rc2 and Gogs through 0.11.53 allows remote attackers to access intranet services. | Gitea, Gogs | 8.6 | ||
| 2018-08-07 | CVE-2018-15178 | Open redirect vulnerability in Gogs before 0.12 allows remote attackers to redirect users to arbitrary websites and conduct phishing attacks via an initial /\ substring in the user/login redirect_to parameter, related to the function isValidRedirect in routes/user/auth.go. | Gogs | 6.1 |