CNNVD-202506-3052 Information
CNNVD ID
CNNVD-202506-3052
Related CVE
- CNNVD Published: 2025-06-24
Description (Chinese)
Gogs(Go Git Service)是Gogs团队的一个基于Go语言的自助Git托管服务,它支持创建、迁移公开/私有仓库,添加、删除仓库协作者等。 Gogs 0.13.3之前版本存在安全漏洞,该漏洞源于.git目录文件删除功能存在缺陷,可能导致远程命令执行。
Description (English)
Gogs (Go Git Service), a Gogs team-based self-help Git hosting service based on Go language, supports the creation, relocation, addition, removal of warehouse collaborators, etc. There was a security loophole in the previous version of Gogs 0.13.3, which stemmed from deficiencies in the deletion function of the .git directory file, which could lead to remote command execution.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
Gogs
Published
2025-06-24
Last Modified
2026-02-24
References
https://github.com/gogs/gogs/releases/tag/v0.13.3 https://github.com/gogs/gogs/commit/77a4a945ae9a87f77e392e9066b560edb71b5de9 https://github.com/gogs/gogs/security/advisories/GHSA-wj44-9vcg-wjq7 https://access.redhat.com/security/cve/cve-2024-56731 https://nvd.nist.gov/vuln/detail/CVE-2024-56731
Patch
https://github.com/gogs/gogs/releases
Share on: