2020-02-21 21:58:23
mitre
PUBLISHED
Gogs through 0.11.91 allows attackers to violate the admin-specified repo-creation policy due to an internal/db/repo.go race condition.