Security for everyone

CVE-2014-8682 Scanner

Detects 'SQL Injection (SQLi)' vulnerability in Gogs (aka Go Git Service) affects v. 0.3.1-9 through 0.5.x before Beta.


Short Info




Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one


Parent Category

CVE-2014-8682 Scanner Detail

Gogs (aka Go Git Service) is a self-hosted Git service written in Go language that allows users to deploy their own Git service. It is designed to provide a fast and lightweight web interface for managing repositories, users, and organizations. With Gogs, users can collaborate with other developers on projects from anywhere in the world and control access to their code. It is a popular solution for managing private Git repositories and is rapidly gaining popularity among developers.

CVE-2014-8682 vulnerability, multiple SQL injection vulnerabilities were detected in Gogs 0.3.1-9 through 0.5.x before Beta. The vulnerability exists in the q parameter to api/v1/repos/search, which is not properly handled in models/repo.go, and api/v1/users/search, which is not properly handled in models/user.go. This flaw allows remote attackers to execute arbitrary SQL commands and access sensitive information stored within the database.

Exploitation of the CVE-2014-8682 vulnerability can lead to significant harm to digital assets. By exploiting the vulnerability, attackers can inject malicious SQL commands into the database, thus extracting sensitive data, modifying or deleting existing data, or even gaining unauthorized access to the system. As a result, the availability, confidentiality, and integrity of digital assets can be compromised.

In conclusion, with the pro features of, users can easily and quickly learn about vulnerabilities in their digital assets. The platform provides regular updates on CVEs, security news, and best practices to minimize the risk of attacks. By staying up to date with the latest security vulnerabilities and patches, users can stay one step ahead of attackers and ensure the security of their digital assets.



cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture