Lucene search
PRIOn knowledge basePRION:CVE-2018-18925HistoryNov 04, 2018 - 5:29 a.m.
Design/Logic Flaw
2018-11-0405:29:00
PRIOn knowledge base
www.prio-n.com
3
Gogs 0.11.66 allows remote code execution because it does not properly validate session IDs, as demonstrated by a “…” session-file forgery in the file session provider in file.go. This is related to session ID handling in the go-macaron/session code for Macaron.
References
Related
cvelist
cvelist
CVE-2018-18925
2018-11-04 06:00:00
CVE-2018-20303
2018-12-20 00:00:00
openvas
openvas
Gogs < 0.11.79 Multiple Vulnerabilities
2018-11-13 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2018-11-05 01:57:12
cve
cve
CVE-2018-18925
2018-11-04 06:00:00
CVE-2018-20303
2018-12-20 00:29:00
CVE-2018-1000853
2022-10-03 16:21:59
nuclei
nuclei
Gogs (Go Git Service) 0.11.66 - Remote Code Execution
2022-02-09 20:40:54
osv
osv
CVE-2018-18925
2018-11-04 05:29:00
CVE-2018-20303
2018-12-20 00:29:00
nvd
nvd
CVE-2018-18925
2018-11-04 05:29:00
CVE-2018-20303
2018-12-20 00:29:00
CVE-2018-1000853
2018-12-06 17:15:08
github
github
Gogs Directory Traversal
2022-05-14 01:37:52
prion
prion
Directory traversal
2018-12-20 00:29:00