Vulnerability Report: GO-2022-0831
- CVE-2014-8682, GHSA-g6xv-8q23-w2q3
- Affects: gogs.io/gogs
- Published: Aug 21, 2024
- Unreviewed
SQL Injection in Gogs in gogs.io/gogs
For detailed information about this vulnerability, visit https://github.com/advisories/GHSA-g6xv-8q23-w2q3 or https://nvd.nist.gov/vuln/detail/CVE-2014-8682.
Affected Modules
-
PathGo Versions
-
from v0.3.1 before v0.5.8
Aliases
References
- https://github.com/advisories/GHSA-g6xv-8q23-w2q3
- https://nvd.nist.gov/vuln/detail/CVE-2014-8682
- http://packetstormsecurity.com/files/129116/Gogs-Label-Search-Blind-SQL-Injection.html
- http://packetstormsecurity.com/files/129117/Gogs-Repository-Search-SQL-Injection.html
- http://seclists.org/fulldisclosure/2014/Nov/31
- http://seclists.org/fulldisclosure/2014/Nov/33
- http://www.exploit-db.com/exploits/35238
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98694
- https://github.com/gogits/gogs/commit/0c5ba4573aecc9eaed669e9431a70a5d9f184b8d
- https://github.com/gogits/gogs/releases/tag/v0.5.8
- https://www.exploit-db.com/exploits/35238
- https://vuln.go.dev/ID/GO-2022-0831.json
Feedback
This report is unreviewed. It was automatically generated from a third-party source and its details have not been verified by the Go team.
See anything missing or incorrect?
Suggest an edit to this report.