Gogs : Security Vulnerabilities, CVEs, (Directory traversal)
Path Traversal in GitHub repository gogs/gogs prior to 0.12.9.
Max CVSS
8.1
EPSS Score
2.78%
Published
2022-06-09
Updated
2022-06-15
Path Traversal in GitHub repository gogs/gogs prior to 0.12.9.
Max CVSS
10.0
EPSS Score
0.09%
Published
2022-06-09
Updated
2022-06-15
In pkg/tool/path.go in Gogs before 0.11.82.1218, a directory traversal in the file-upload functionality can allow an attacker to create a file under data/sessions on the server, a similar issue to CVE-2018-18925.
Max CVSS
7.5
EPSS Score
0.14%
Published
2018-12-20
Updated
2019-01-31
3 vulnerabilities found