Vulnerabilities > Gogs

DATE CVE VULNERABILITY TITLE RISK
2022-06-09 CVE-2022-1992 Path Traversal vulnerability in Gogs
Path Traversal in GitHub repository gogs/gogs prior to 0.12.9.
network
low complexity
gogs CWE-22
critical
 9.1
9.1
2022-06-09 CVE-2022-1993 Path Traversal vulnerability in Gogs
Path Traversal in GitHub repository gogs/gogs prior to 0.12.9.
network
low complexity
gogs CWE-22
8.1
8.1
2022-06-09 CVE-2022-31038 Unspecified vulnerability in Gogs
Gogs is an open source self-hosted Git service.
network
low complexity
gogs
5.4
5.4
2022-06-02 CVE-2021-32546 Unspecified vulnerability in Gogs
Missing input validation in internal/db/repo_editor.go in Gogs before 0.12.8 allows an attacker to execute code remotely.
network
low complexity
gogs
8.8
8.8
2022-06-01 CVE-2022-1285 Server-Side Request Forgery (SSRF) vulnerability in Gogs
Server-Side Request Forgery (SSRF) in GitHub repository gogs/gogs prior to 0.12.8.
network
low complexity
gogs CWE-918
6.5
6.5
2022-05-05 CVE-2022-1464 Cross-site Scripting vulnerability in Gogs
Stored xss bug in GitHub repository gogs/gogs prior to 0.12.7.
network
low complexity
gogs CWE-79
5.4
5.4
2022-03-21 CVE-2022-0415 Unrestricted Upload of File with Dangerous Type vulnerability in Gogs
Remote Command Execution in uploading repository file in GitHub repository gogs/gogs prior to 0.12.6.
network
low complexity
gogs CWE-434
8.8
8.8
2022-03-11 CVE-2022-0871 Unspecified vulnerability in Gogs
Missing Authorization in GitHub repository gogs/gogs prior to 0.12.5.
network
low complexity
gogs
critical
 9.1
9.1
2022-03-11 CVE-2022-0870 Server-Side Request Forgery (SSRF) vulnerability in Gogs
Server-Side Request Forgery (SSRF) in GitHub repository gogs/gogs prior to 0.12.5.
network
low complexity
gogs CWE-918
5.3
5.3
2020-10-16 CVE-2020-15867 Unspecified vulnerability in Gogs
The git hook feature in Gogs 0.5.5 through 0.12.2 allows for authenticated remote code execution.
network
low complexity
gogs
7.2
7.2