ID CVE-2018-15192
Summary An SSRF vulnerability in webhooks in Gitea through 1.5.0-rc2 and Gogs through 0.11.53 allows remote attackers to access intranet services.
References
Vulnerable Configurations
  • cpe:2.3:a:gitea:gitea:1.5.0:rc1
    cpe:2.3:a:gitea:gitea:1.5.0:rc1
  • cpe:2.3:a:gitea:gitea:1.5.0:rc2
    cpe:2.3:a:gitea:gitea:1.5.0:rc2
  • cpe:2.3:a:gogs:gogs:0.11.53
    cpe:2.3:a:gogs:gogs:0.11.53
CVSS
Base: 5.0
Impact:
Exploitability:
CWE CWE-918
CAPEC
refmap via4
misc
Last major update 07-08-2018 - 22:29
Published 07-08-2018 - 22:29
Last modified 18-10-2018 - 13:02
Back to Top