Vulnerabilities3 min read
Gogs RCE Flaw Lets Any User Execute Code — No Patch Available
Critical CVSS 9.4 vulnerability in Gogs self-hosted Git service allows authenticated users to achieve RCE via argument injection. Maintainers unresponsive since March disclosure.
Marcus ChenJun 2, 2026