|漏洞详情

Gitea是Gitea社区的一个基于Go开发的轻量型git服务。
Gitea 0.9.99版本至1.12.x系列1.12.6之前版本存在安全漏洞,该漏洞源于不会阻止git协议路径指定TCP端口号,并且在parseRemoteAddr中的modules/auth/repo_form.go中也包含换行符(具有URL编码)。

|参考资料

来源:nvd.nist.gov

链接:https://nvd.nist.gov/vuln/detail/CVE-2020-28991



Source link

Is your business effected by Cyber Crime?

If a cyber crime or cyber attack happens to you, you need to respond quickly. Cyber crime in its several formats such as online identity theft, financial fraud, stalking, bullying, hacking, e-mail fraud, email spoofing, invoice fraud, email scams, banking scam, CEO fraud. Cyber fraud can lead to major disruption and financial disasters. Contact Digitpol’s hotlines or respond to us online.

Digitpol’s Cyber Crime Investigation Unit provides investigative support to victims of cyber crimes. Digitpol is available 24/7. https://digitpol.com/cybercrime-investigation/

Europe +31558448040
UK +44 20 8089 9944
ASIA +85239733884