A critical zero-day vulnerability has been discovered in Gogs, the widely used open-source self-hosted Git service, allowing any authenticated user to achieve remote code execution (RCE) on the underlying server. Rapid7 researcher Jonah Burgess discovered the flaw, which carries a CVSSv4 score of 9.4 (Critical) and remains unpatched at the time of disclosure. Tracked as […]
The post New Gogs 0-Day Lets Attackers Execute Code Remotely on Servers appeared first on Cyber Security News.