Topic: symbolic link abuse

Sort by: Relevance | Date
  • Unpatched Gogs Bug Actively Exploited, CISA Warns
    January 14, 2026

    Unpatched Gogs Bug Actively Exploited, CISA Warns

    A critical vulnerability (CVE-2025-8110) in the Gogs platform is being actively exploited, allowing authenticated users to achieve remote code execution by overwriting files via a symbolic link flaw. Over 700 Gogs instances have already been compromised, with no official patch yet available, thou...

    Read More »

Related Topics

mitigation recommendations (1) active exploitation (1) remote code execution (1) zero-day exploit (1) affected versions (1) cisa warning (1) malware payloads (1) wiz research (1)