gogs News Articles
Recent news articles refferecing the vendors vulnerabilities.
GBHackers NewsCVE-2025-8110Gogs 0-Day Actively Exploited to Compromise Over 700 Servers
Security researchers have identified an active zero-day vulnerability in Gogs, a widely used self-hosted Git service.
1 week ago
Security AffairsCVE-2025-8110Critical Gogs zero-day under attack, 700 servers hacked
Hackers exploited an unpatched Gogs zero-day, allowing remote code execution and compromising around 700 Internet-facing servers.
1 week ago
Gogs Git service zero-day exploited since Dec. 1
A patch hasn’t been released yet – here are five tips for security pros.
1 week ago
CyberInsiderCVE-2025-8110Unpatched zero-day in Gogs exploited to hack 700 Git servers
A previously unknown zero-day vulnerability in Gogs, a lightweight, self-hosted Git service, is being actively exploited in the wild.
1 week ago
CybersecurityNewsCVE-2025-8110Gogs 0-Day Vulnerability Exploited in the Wild to Hack 700+ Instances
A critical zero-day vulnerability in Gogs, a widely used self-hosted Git service, is currently being exploited in the wild. Designated as CVE-2025-8110, this flaw allows authenticated users to execute a symlink bypass, leading to Remote Code Execution (RCE).
1 week ago
Gogs 0-Day Vulnerability Exploited in the Wild to Hack 700+ Instances
A critical zero-day vulnerability in Gogs, a widely used self-hosted Git service, is currently being exploited in the wild. Designated as CVE-2025-8110, this flaw allows authenticated users to execute a symlink bypass, leading to Remote Code Execution (RCE).
1 week ago
Hackers exploit unpatched Gogs zero-day to breach 700 servers
An unpatched zero-day vulnerability in Gogs, a popular self-hosted Git service, has enabled attackers to gain remote code execution on Internet-facing instances and compromise hundreds of servers.
1 week ago
Hackers exploit unpatched Gogs zero-day to breach 700 servers
An unpatched zero-day vulnerability in Gogs, a popular self-hosted Git service, has enabled attackers to gain remote code execution on Internet-facing instances and compromise hundreds of servers.
1 week ago
The Hacker NewsCVE-2025-8110Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks
Unpatched Gogs flaw CVE-2025-8110 enables file overwrite and code execution, driving over 700 confirmed compromises.
1 week ago
Unpatched Gogs Zero-Day Exploited for Months
Threat actors have exploited a zero-day vulnerability in the Gogs self-hosted Git service to compromise over 700 internet-exposed instances.
1 week ago
Unpatched Gogs Zero-Day Exploited for Months
Threat actors have exploited a zero-day vulnerability in the Gogs self-hosted Git service to compromise over 700 internet-exposed instances.
1 week ago
theregister.comCVE-2025-8110700+ self-hosted Git instances battered in 0-day attacks
Attackers are actively exploiting a zero-day bug in Gogs, a popular self-hosted Git service, and the open source project doesn't yet have a fix. More than 700 instances have been compromised in the ongoing...
1 week ago
wiz.ioCVE-2025-8110Gogs Zero-Day RCE (CVE-2025-8110) Actively Exploited | Wiz Blog
Wiz Research discovered a Gogs zero-day (CVE-2025-8110) that bypasses a previous RCE fix via symlinks, leading to file overwrite and remote code execution.
1 week ago
SecurityLab.ruCVE-2024-39930Год бездействия: почему Gogs игнорирует критические 0day-уязвимости в своём продукте
Атаки способны затронуть тысячи разработчиков по всему миру.
데일리시큐CVE-2024-39930Gogs Git 서비스의 심각한 보안 취약점 발견돼
소나소스(SonarSource) 연구원은 Gogs의 오픈 소스, 자체 호스팅 Git 서비스에서 네 가지 주요 보안 취약점을 발견했다고 발표했다. 이 취약점들은 인증된 공격자가 Gogs 인스턴스를 침해하고, 소스 코드를 훔치거나 삭제하며, 백도어를 심는 것을 가능하게 할 수 있다.주요 취약점 상세 정보는 다음과 같다. 1. CVE-2024-39930 (CVSS 점수: 9.9): 이 취약점은 내장된 SSH 서버에서 인수 주입(argument injection)을 허용한다. 성공적인 공격을 위해서는 SSH 서버가 활성화되어 있어야 하며,