CVE-2026-25242
- Source
- https://cve.org/CVERecord?id=CVE-2026-25242
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-25242.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2026-25242
- Aliases
- Downstream
- Related
- Published
- 2026-02-19T02:28:40.140Z
- Modified
- 2026-03-04T22:29:00.146550Z
- Severity
-
- 6.9 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N CVSS Calculator
- Summary
- Gogs allows unauthenticated file uploads
- Details
-
Gogs is an open source self-hosted Git service. Versions 0.13.4 and below expose unauthenticated file upload endpoints by default. When the global RequireSigninView setting is disabled (default), any remote user can upload arbitrary files to the server via /releases/attachments and /issues/attachments. This enables the instance to be abused as a public file host, potentially leading to disk exhaustion, content hosting, or delivery of malware. CSRF tokens do not mitigate this attack due to same-origin cookie issuance. This issue has been fixed in version 0.14.1.
- Database specific
{ "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-862" ], "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/25xxx/CVE-2026-25242.json" }- References
-
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/25xxx/CVE-2026-25242.json
- https://github.com/gogs/gogs/commit/628216d5889fcb838c471f4754f09b935d9cd9f3
- https://github.com/gogs/gogs/pull/8128
- https://github.com/gogs/gogs/releases/tag/v0.14.1
- https://github.com/gogs/gogs/security/advisories/GHSA-fc3h-92p8-h36f
- https://nvd.nist.gov/vuln/detail/CVE-2026-25242
Affected packages
Git / github.com/gogs/gogs
Affected ranges
- Type
- GIT
- Repo
- https://github.com/gogs/gogs
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
v0.*
v0.10
v0.10.1
v0.10.18
v0.10.8
v0.10rc
v0.11
v0.11.19
v0.11.29
v0.11.33
v0.11.34
v0.11.4
v0.11.43
v0.11.53
v0.11.66
v0.11.79
v0.11.86
v0.11.91
v0.11rc
v0.14.0
v0.14.0-rc.1
v0.2.0
v0.3.0
v0.3.1
v0.4.0
v0.4.1
v0.4.2
v0.5.0
v0.5.11
v0.5.13
v0.5.2
v0.5.5
v0.5.8
v0.5.9
v0.6.0
v0.6.1
v0.6.15
v0.6.3
v0.6.5
v0.6.9
v0.7.0
v0.7.19
v0.7.22
v0.7.33
v0.7.6
v0.8.0
v0.8.10
v0.8.25
v0.8.43
v0.9.0
v0.9.113
v0.9.128
v0.9.13
v0.9.141
v0.9.46
v0.9.48
v0.9.60
v0.9.71
v0.9.97