A critical Remote Code Execution (RCE) vulnerability has been disclosed in Gogs, a popular self-hosted Git service, allowing any authenticated user to execute arbitrary code. The flaw has a CVSS score of 9.4.
A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service. The flaw allows any authenticated user to achieve remote code execution (RCE) under certain conditions. The security flaw has been rated 9.4 on the CVSS scoring system, according to Rapid7. Note that the vulnerability currently does not have an assigned CVE identifier.