Unpatched Gogs flaw CVE-2025-8110 enables file overwrite and code execution, driving over 700 confirmed compromises.
An attacker has been exploiting a zero-day vulnerability in Gogs, an open-source and popular Git service that allows for self ...
Threat actors have exploited a zero-day vulnerability in the Gogs self-hosted Git service to compromise over 700 internet-exposed instances.
The Register on MSN
700+ self-hosted Gits battered in 0-day attacks with no fix imminent
More than half of internet-exposed instances already compromised Attackers are actively exploiting a zero-day bug in Gogs, a ...
Wiz has found threat actors exploiting GitHub tokens, giving them access to GitHub Action Secrets and, ultimately, cloud ...
Wiz disclosed a still-unpatched vulnerability in self-hosted Git service Gogs, which is a bypass for a previous RCE bug ...
GitHub is now automatically blocking the leak of sensitive information like API keys and access tokens for all public code repositories. Today's announcement comes after the company introduced push ...
A scan of billions of files from 13 percent of all GitHub public repositories over a period of six months has revealed that over 100,000 repos have leaked API tokens and cryptographic keys, with ...
Private and deleted GitHub repositories are not as secure as users might assume. Data from deleted forks, deleted repositories, and private repositories can still be accessed, often indefinitely. This ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback