Vulnerability Report: GO-2022-0566
- CVE-2022-0870, GHSA-7v5r-r995-q2x2
- Affects: gogs.io/gogs
- Published: Aug 21, 2024
- Unreviewed
SSRF in repository migration in gogs.io/gogs
For detailed information about this vulnerability, visit https://github.com/advisories/GHSA-7v5r-r995-q2x2 or https://nvd.nist.gov/vuln/detail/CVE-2022-0870.
Affected Modules
-
PathGo Versions
-
before v0.12.5
Aliases
References
- https://github.com/advisories/GHSA-7v5r-r995-q2x2
- https://nvd.nist.gov/vuln/detail/CVE-2022-0870
- https://github.com/gogs/gogs/commit/91f2cde5e95f146bfe4765e837e7282df6c7cabb
- https://huntr.dev/bounties/327797d7-ae41-498f-9bff-cc0bf98cf531
- https://vuln.go.dev/ID/GO-2022-0566.json
Feedback
This report is unreviewed. It was automatically generated from a third-party source and its details have not been verified by the Go team.
See anything missing or incorrect?
Suggest an edit to this report.