Vulnerabilities > CVE-2018-16409 - Server-Side Request Forgery (SSRF) vulnerability in Gogs 0.11.53
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
In Gogs 0.11.53, an attacker can use migrate to send arbitrary HTTP GET requests, leading to SSRF.