VYPR

Go modules package

github.com/gogits/gogs

pkg:golang/github.com/gogits/gogs

Vulnerabilities (1)

  • CVE-2014-8681Nov 21, 2014
    affected >= 0.3.1, < 0.5.8fixed 0.5.8

    SQL injection vulnerability in the GetIssues function in models/issue.go in Gogs (aka Go Git Service) 0.3.1-9 through 0.5.6.x before 0.5.6.1025 Beta allows remote attackers to execute arbitrary SQL commands via the label parameter to user/repos/issues.