muxishuihan

1 exploit Active since Jun 2020
CVE-2020-14958 WRITEUP MEDIUM WRITEUP
Gogs 0.11.91 - Improper Preservation of Permissions in Email Ownership Check
In Gogs 0.11.91, MakeEmailPrimary in models/user_mail.go lacks a "not the owner of the email" check.
CVSS 6.5