0.001 Low
EPSS
Percentile
21.8%
github.com/gogs/gogs is vulnerable to insecure direct object reference. A remote attacker is able to configure and set the primary email address of other users on their behalf.
github.com/gogs/gogs/commit/82ff0c5852f29daa5f95d965fd50665581e7ea3c
github.com/gogs/gogs/pull/5988