Affected by GO-2022-1060 and 5 other vulnerabilities

GO-2022-1060: Gogs vulnerable to Cross-site Scripting in gogs.io/gogs

GO-2024-3275: Unpatched Remote Code Execution in Gogs in gogs.io/gogs

GO-2024-3355: Remote Command Execution in file editing in gogs in gogs.io/gogs

GO-2024-3356: Path Traversal in file update API in gogs in gogs.io/gogs

GO-2025-3776: Gogs allows deletion of internal files which leads to remote command execution in gogs.io/gogs

GO-2025-3778: Gogs XSS allowed by stored call in PDF renderer in gogs.io/gogs

netutil

package

v0.13.1-rc.1 Latest Latest Go to latest Published: Dec 22, 2024 License: MIT Imports: 2 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/gogs/gogs

Documentation ¶

Index ¶

func IsBlockedLocalHostname(hostname string, allowlist []string) bool

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func IsBlockedLocalHostname ¶ added in v0.12.8

func IsBlockedLocalHostname(hostname string, allowlist []string) bool

IsBlockedLocalHostname returns true if given hostname is resolved to a local network address that is implicitly blocked (i.e. not exempted from the allowlist).

Types ¶

This section is empty.

Source Files ¶

View all Source files

netutil.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL