Lucene search
GoogleOSV:GHSA-P5F9-C9J9-G8QXHistoryMay 17, 2022 - 12:01 a.m.
Shell command injection in gitea
2022-05-1700:01:46
Google
osv.dev
33
gitea
shell command injection
git fetch
software security
EPSS
0.812
Percentile
98.4%
Gitea before 1.16.7 does not escape the shell out for git fetch remote allowing for shell command injection
References
packetstormsecurity.com/files/168400/Gitea-1.16.6-Remote-Code-Execution.html
packetstormsecurity.com/files/169928/Gitea-Git-Fetch-Remote-Code-Execution.html
blog.gitea.io/2022/05/gitea-1.16.7-is-released
github.com/go-gitea/gitea
github.com/go-gitea/gitea/pull/19487
github.com/go-gitea/gitea/pull/19490
nvd.nist.gov/vuln/detail/CVE-2022-30781
Related
prion
prion
Design/Logic Flaw
2022-05-16 04:15:00
cvelist
cvelist
CVE-2022-30781
2022-05-16 00:00:00
cve
cve
CVE-2022-30781
2022-05-16 04:15:13
openvas
openvas
Gitea < 1.16.7 Privilege Escalation Vulnerability
2022-05-19 00:00:00
exploitdb
exploitdb
Gitea 1.16.6 - Remote Code Execution (RCE) (Metasploit)
2022-09-15 00:00:00
nvd
nvd
CVE-2022-30781
2022-05-16 04:15:13
zdt
zdt
Gitea Git Fetch Remote Code Execution Exploit
2022-11-17 00:00:00
Gitea 1.16.6 - Remote Code Execution Exploit
2022-09-15 00:00:00
osv
osv
BIT-gitea-2022-30781
2024-03-06 10:52:59
CVE-2022-30781
2022-05-16 04:15:13
Shell command injection in gitea in code.gitea.io/gitea
2024-08-21 15:11:31
gitlab
gitlab
Improper Encoding or Escaping of Output
2022-05-17 00:00:00
github
github
Shell command injection in gitea
2022-05-17 00:01:46
metasploit
metasploit
Gitea Git Fetch Remote Code Execution
2022-10-03 12:57:09
githubexploit
githubexploit
Exploit for Improper Encoding or Escaping of Output in Gitea
2022-05-22 05:15:58
alpinelinux
alpinelinux
CVE-2022-30781
2022-05-16 04:15:13
packetstorm
packetstorm
Gitea 1.16.6 Remote Code Execution
2022-09-15 00:00:00
Gitea Git Fetch Remote Code Execution
2022-11-17 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2022-05-18 10:53:06
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2022-11-18 21:49:52