GHSA-5gjh-5j4f-cpwv

Suggest an improvement
Source
https://github.com/advisories/GHSA-5gjh-5j4f-cpwv
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/03/GHSA-5gjh-5j4f-cpwv/GHSA-5gjh-5j4f-cpwv.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-5gjh-5j4f-cpwv
Aliases
Published
2022-03-28T16:46:41Z
Modified
2023-11-08T04:07:33.909857Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
Unrestricted Upload of File with Dangerous Type in Gogs
Details

Impact

The malicious user is able to upload a crafted config file into repository's .git directory with to gain SSH access to the server. All installations with repository upload enabled (default) are affected.

Patches

Repository file uploads are prohibited to its .git directory. Users should upgrade to 0.12.6 or the latest 0.13.0+dev.

Workarounds

Disable repository files upload.

References

https://huntr.dev/bounties/b4928cfe-4110-462f-a180-6d5673797902/

For more information

If you have any questions or comments about this advisory, please post on #6833.

References

Affected packages

Go / gogs.io/gogs

Package

Name
gogs.io/gogs
View open source insights on deps.dev
Purl
pkg:golang/gogs.io/gogs

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.6