Описание
Gogs allows argument injection during the previewing of changes
Impact
Unprivileged user accounts can write to arbitrary files on the filesystem. We could demonstrate its exploitation to force a re-installation of the instance, granting administrator rights. It allows accessing and altering any user's code hosted on the same instance.
Patches
Unintended Git options has been ignored for diff preview (https://github.com/gogs/gogs/pull/7871). Users should upgrade to 0.13.1 or the latest 0.14.0+dev.
Workarounds
No viable workaround available, please only grant access to trusted users to your Gogs instance on affected versions.
References
Пакеты
gogs.io/gogs
<= 0.13.0
0.13.1
Связанные уязвимости
Gogs through 0.13.0 allows argument injection during the previewing of changes.
Уязвимость программного средства создания самоуправляемых Git-репозиториев Gogs, связанная с неверным управлением генерацией кода, позволяющая нарушителю выполнять произвольные команды