Lucene search
Veracode Vulnerability DatabaseVERACODE:35924HistoryJun 09, 2022 - 7:55 a.m.
Path Traversal
2022-06-0907:55:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.001 Low
EPSS
Percentile
39.6%
gogs.io/gogs is vulnerable to path traversal. The vulnerability exists in Clean function in pathutil.go due to lack of validations which allows a malicious attacker to delete and upload arbitrary files.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/gogs/gogs | le | v0.12.8 | |
| github.com/gogs/gogs | le | v0.12.8 |
Related
osv
osv
CVE-2022-1992
2022-06-09 17:15:08
Path Traversal in file editor on Windows in Gogs
2022-06-08 20:15:11
nvd
nvd
CVE-2022-1992
2022-06-09 17:15:08
prion
prion
Path traversal
2022-06-09 17:15:00
github
github
Path Traversal in file editor on Windows in Gogs
2022-06-08 20:15:11
huntr
huntr
Path traversal leads to arbitrary file deletions and file writes
2022-06-02 14:36:18
cve
cve
CVE-2022-1992
2022-06-09 17:15:08
gitlab
gitlab
Path Traversal in file editor on Windows in Gogs
2022-06-08 00:00:00
cvelist
cvelist
CVE-2022-1992 Path Traversal in gogs/gogs
2022-06-08 13:30:14
openvas
openvas
Gogs < 0.12.9 Multiple Vulnerabilities
2022-06-10 00:00:00