gogs
DevTools & CIoss-project
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting gogs.
- CVE-2026-52797Gogs: Overwriting critical files results in a denial of service8.5
- CVE-2026-52813Gogs: Path Traversal in organization name results in RCE through Git hooks10.0
- CVE-2026-52809Gogs: Password-reset tokens use account-activation lifetime, ignoring RESET_PASSWORD_CODE_LIVES6.8
- CVE-2026-52808Gogs: Write-level collaborators can mutate admin-only repository settings via API7.1
- CVE-2026-52805Gogs: Migration Redirect Bypass Leads to Internal Repository Theft8.7
- CVE-2026-52806Gogs: RCE via git rebase --exec argument injection in pull request merge9.9
- CVE-2026-52799Gogs: Missing Authorization in Attachment Download7.5
- CVE-2026-52801Gogs: Ability to import local repositories via Mirror Settings8.1
- CVE-2026-52800Gogs: CSRF Leading to Organization Owner Takeover8.8
- CVE-2026-52802Gogs: Open Redirect via redirect_to in Gogs5.4
- CVE-2026-52798Gogs: Stored XSS in `.ipynb` Preview8.9
- CVE-2026-52796Gogs: DoS in rendering issue index pattern3.5
- CVE-2026-47267Gogs: SSRF in webhook deliveries8.3
- CVE-2026-52795Gogs: Authorization Bypass in Watch API allows any user to monitor private repository activity4.3
- CVE-2025-64719Gogs: Denial of Service in repository/wiki file listing web pages4.9