CVE-2014-8681

Gogs 0.3.1-0.5.6.x - SQL Injection via Label Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-8681. PoCs published by Timo Schmid.

AI-analyzed exploit summary This document details a blind SQL injection vulnerability in Gogs (Go Git Service) affecting versions >= v0.3.1-9-g49dc57e and <= v0.5.6.1024-gf1d8746. The vulnerability arises from improper string concatenation in the SQL query within the `models/issue.go` file, specifically in the `GetIssues` function, allowing attackers to inject malicious SQL via the `labelIds` parameter.

Description

SQL injection vulnerability in the GetIssues function in models/issue.go in Gogs (aka Go Git Service) 0.3.1-9 through 0.5.6.x before 0.5.6.1025 Beta allows remote attackers to execute arbitrary SQL commands via the label parameter to user/repos/issues.

Exploits (1)

exploitdb WRITEUP
by Timo Schmid · textwebappsmultiple
https://www.exploit-db.com/exploits/35237

This document details a blind SQL injection vulnerability in Gogs (Go Git Service) affecting versions >= v0.3.1-9-g49dc57e and <= v0.5.6.1024-gf1d8746. The vulnerability arises from improper string concatenation in the SQL query within the `models/issue.go` file, specifically in the `GetIssues` function, allowing attackers to inject malicious SQL via the `labelIds` parameter.

Classification
Writeup 100%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Gogs (Go Git Service) versions >= v0.3.1-9-g49dc57e and <= v0.5.6.1024-gf1d8746
No auth needed
Prerequisites: Access to the Gogs instance · Knowledge of SQL injection techniques
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (6)

Core 6

Scores

EPSS 0.0521
EPSS Percentile 90.2%

Details

CWE
CWE-89
Status published
Products (8)
gogits/gogs 0.3.1-9
gogits/gogs 0.4.1
gogits/gogs 0.4.2
gogits/gogs 0.5.0
gogits/gogs 0.5.2
gogits/gogs < 0.5.5
gogits/gogs 0.3.1 - 0.5.8Go
gogs.io/gogs 0.3.1 - 0.5.8Go
Published Nov 21, 2014
Tracked Since Feb 18, 2026