Gogs RCE II

Bookmarked!

This exercise covers how to get code execution against the Git self hosted tool: Gogs.

PRO Hard < 1 Hr. 610 Green Badge

Course

This course demonstrates the exploitation of a remote command execution (RCE) vulnerability in Gogs, a tool for hosting git repositories. The attack involves bypassing authentication to gain administrator access and using git hooks to execute commands on the server.

Skills covered

Injection Authentication Operating System

CWE-94

Included with PRO

Full course content 2 videos Common mistakes

Ready to practice?

Get access to this lab and 600+ hands-on exercises with a PRO subscription.

Go PRO or create a free account