Vulnerability Database
Blog
FAQ
Docs
GO-2022-0450
See a problem?
Source
https://pkg.go.dev/vuln/GO-2022-0450
Import Source
https://vuln.go.dev/ID/GO-2022-0450.json
JSON Data
https://api.osv.dev/v1/vulns/GO-2022-0450
Aliases
BIT-gitea-2022-30781
CVE-2022-30781
GHSA-p5f9-c9j9-g8qx
Published
2024-08-21T15:11:31Z
Modified
2024-08-21T15:26:58.146441Z
Summary
Shell command injection in gitea in code.gitea.io/gitea
Details
Shell command injection in gitea in code.gitea.io/gitea
References
https://github.com/advisories/GHSA-p5f9-c9j9-g8qx
https://nvd.nist.gov/vuln/detail/CVE-2022-30781
http://packetstormsecurity.com/files/168400/Gitea-1.16.6-Remote-Code-Execution.html
http://packetstormsecurity.com/files/169928/Gitea-Git-Fetch-Remote-Code-Execution.html
https://blog.gitea.io/2022/05/gitea-1.16.7-is-released
https://github.com/go-gitea/gitea/pull/19487
https://github.com/go-gitea/gitea/pull/19490
Affected packages
Go
/
code.gitea.io/gitea
Package
Name
code.gitea.io/gitea
View open source insights on deps.dev
Purl
pkg:golang/code.gitea.io/gitea
Affected ranges
Type
SEMVER
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1.16.7
GO-2022-0450 - OSV