Information disclosure in Gogs
CVE-2026-52815
Gogs is an open source self-hosted Git service. Prior to 0.14.3, Gogs has an unauthenticated information disclosure vulnerability. The GET /api/v1/orgs/:orgname/teams endpoint at internal/route/api/v1/org_team.go:8 returns all teams for an…
Vulnerability class: Information Disclosure
Affected products
- Gogs — versions < 0.14.3
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)