Gogs news

A critical, unpatched vulnerability has been found in Gogs, a popular self-hosted Git service. The flaw allows for argument injection, potentially leading to remote code execution. The lack of a patch highlights risks associated with some open-source projects with limited maintainer support.

A critical security flaw has been found in Gogs, a popular self-hosted Git service. The vulnerability, rated 9.4 on the CVSS scale, allows any authenticated user to execute arbitrary code on the server. The issue does not yet have an official CVE identifier.