{"schema_version":"1.3.1","id":"GO-2025-3776","modified":"2025-07-28T19:57:13Z","published":"2025-07-28T19:57:13Z","aliases":["CVE-2024-56731","GHSA-wj44-9vcg-wjq7"],"summary":"Gogs allows deletion of internal files which leads to remote command execution in gogs.io/gogs","details":"Gogs allows deletion of internal files which leads to remote command execution in gogs.io/gogs","affected":[{"package":{"name":"gogs.io/gogs","ecosystem":"Go"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"0.13.3"}]}],"ecosystem_specific":{}}],"references":[{"type":"ADVISORY","url":"https://github.com/gogs/gogs/security/advisories/GHSA-wj44-9vcg-wjq7"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-56731"},{"type":"WEB","url":"https://github.com/advisories/GHSA-ccqv-43vm-4f3w"},{"type":"WEB","url":"https://github.com/gogs/gogs/commit/77a4a945ae9a87f77e392e9066b560edb71b5de9"},{"type":"WEB","url":"https://github.com/gogs/gogs/releases/tag/v0.13.3"}],"database_specific":{"url":"https://pkg.go.dev/vuln/GO-2025-3776","review_status":"UNREVIEWED"}}