Lucene search
Veracode Vulnerability DatabaseVERACODE:34796HistoryMar 22, 2022 - 3:02 p.m.
Remote Code Execution
2022-03-2215:02:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.118 Low
EPSS
Percentile
95.3%
github.com/gogs/gogs is vulnerable to remote code execution. Lack of proper validations in UploadRepoFiles function allow remote attackers to upload and execute malicious code on the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/gogs/gogs | le | v0.12.5 | |
| github.com/gogs/gogs | le | v0.12.5 |
Related
gitlab
gitlab
Unrestricted Upload of File with Dangerous Type
2022-03-28 00:00:00
prion
prion
Design/Logic Flaw
2022-03-21 11:15:00
osv
osv
CVE-2022-0415
2022-03-21 11:15:10
Unrestricted Upload of File with Dangerous Type in Gogs
2022-03-28 16:46:41
cvelist
cvelist
nuclei
nuclei
Gogs <0.12.6 - Remote Command Execution
2023-03-18 22:07:09
ubuntucve
ubuntucve
CVE-2022-0415
2022-03-21 00:00:00
nvd
nvd
CVE-2022-0415
2022-03-21 11:15:10
alpinelinux
alpinelinux
CVE-2022-0415
2022-03-21 11:15:00
github
github
Unrestricted Upload of File with Dangerous Type in Gogs
2022-03-28 16:46:41
openvas
openvas
Gogs < 0.12.6 RCE Vulnerability
2022-03-22 00:00:00
huntr
huntr
Remote Command Execution in uploading repository file
2022-03-11 15:27:27
Bypass to Remote Command Execution in uploading repository file
2022-06-06 16:09:01
checkpoint_advisories
checkpoint_advisories
Gogs File Upload Command Injection (CVE-2022-0415)
2022-05-17 00:00:00
cve
cve
CVE-2022-0415
2022-03-21 11:15:10