Information security
fromThe Hacker News
21 hours agoUnpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks
A critical file-overwrite vulnerability (CVE-2025-8110, CVSS 8.7) in Gogs enables symlink-based arbitrary code execution and has been actively exploited across 700+ instances.