github.com/gogs/gogs is vulnerable to remote code execution. The vulnerability exists in the isRepositoryGitPath
function in repo_editor.go
due to a lack of input validation in git configuration which allows an attacker to upload and execute malicious code.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/gogs/gogs | le | v0.12.7 | |
github.com/gogs/gogs | le | v0.12.7 |