Описание
Gitea Remote Code Execution (RCE)
Gitea before 1.5.4 allows remote code execution because it does not properly validate session IDs. This is related to session ID handling in the go-macaron/session code for Macaron.
Пакеты
Наименование
code.gitea.io/gitea
go
Затронутые версииВерсия исправления
< 1.5.2
1.5.2
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 7 лет назад
Gitea before 1.5.4 allows remote code execution because it does not properly validate session IDs. This is related to session ID handling in the go-macaron/session code for Macaron.
CVSS3: 9.8
nvd
больше 7 лет назад
Gitea before 1.5.4 allows remote code execution because it does not properly validate session IDs. This is related to session ID handling in the go-macaron/session code for Macaron.
CVSS3: 9.8
debian
больше 7 лет назад
Gitea before 1.5.4 allows remote code execution because it does not pr ...