GHSA-xh32-cx6c-cp4v
Suggest an improvement- Source
- https://github.com/advisories/GHSA-xh32-cx6c-cp4v
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/06/GHSA-xh32-cx6c-cp4v/GHSA-xh32-cx6c-cp4v.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-xh32-cx6c-cp4v
- Aliases
- Related
- Published
- 2025-06-26T16:54:01Z
- Modified
- 2025-07-30T17:45:37Z
- Severity
-
- 6.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N CVSS Calculator
- Summary
- Gogs XSS allowed by stored call in PDF renderer
- Details
-
Summary
A stored XSS is present in Gogs which allows client-side Javascript code execution.
Details
Gogs Version:
docker images REPOSITORY TAG IMAGE ID CREATED SIZE gogs/gogs latest fe92583bc4fe 10 hours ago 99.3MBApplication version:
0.14.0+devLocal setup using:
# Pull image from Docker Hub. docker pull gogs/gogs # Create local directory for volume. sudo mkdir -p /var/gogs # Use `docker run` for the first time. docker run --name=gogs -p 10022:22 -p 10880:3000 -v /var/gogs:/data gogs/gogsThe vulnerability is caused by the usage of a vulnerable and outdated component:
pdfjs-1.4.20under public/plugins/.
Read more about this vulnerability at codeanlabs - CVE-2024-4367.PoC
- Upload the Proof of Concept file hosted at https://codeanlabs.com/wp-content/uploads/2024/05/pocgeneralizedCVE-2024-4367.pdf in a repository.
- Click on the file to be previewed.
Credits
Edoardo Ottavianelli
- Database specific
{ "nvd_published_at": "2025-06-24T04:15:46Z", "github_reviewed_at": "2025-06-26T16:54:01Z", "cwe_ids": [ "CWE-79" ], "github_reviewed": true, "severity": "MODERATE" }- References
-
- https://github.com/gogs/gogs/security/advisories/GHSA-xh32-cx6c-cp4v
- https://nvd.nist.gov/vuln/detail/CVE-2025-47943
- https://github.com/gogs/gogs/commit/110117b2e5e5baa4809c819bec701e929d2d8d40
- https://github.com/gogs/gogs
- https://github.com/gogs/gogs/releases/tag/v0.13.3
- https://www.hacktivesecurity.com/blog/2025/07/15/cve-2025-47943-stored-xss-in-gogs-via-pdf
Affected packages
Go / github.com/gogs/gogs
Package
- Name
- github.com/gogs/gogs
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/gogs/gogs
Go / gogs.io/gogs
Package
- Name
- gogs.io/gogs
- View open source insights on deps.dev
- Purl
- pkg:golang/gogs.io/gogs