CRITICALZero Day
Global

New Gogs zero-day flaw lets hackers get remote code execution

·Source: BleepingComputer

Updated:

Executive Summary

An unpatched zero-day vulnerability in the Gogs self-hosted Git service can allow attackers to gain remote code execution (RCE) on Internet-facing instances. [...]

Analysis

An unpatched zero-day vulnerability in the Gogs self-hosted Git service can allow attackers to gain remote code execution (RCE) on Internet-facing instances. [...]
Source Attribution

Originally published by BleepingComputer on May 28, 2026.

Related Threats

CRITICALZero DayPOC

Microsoft Threatens Legal Action Over Zero-Day Leaks

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/microsoft-threatens-legal-action-over-zero-day-leaks-image_small-3-a-31807.jpg" align=right hspace=4><b>Security Researchers Fear Broader Legal Pressure on Bug Disclosures</b><br>Microsoft is pursuing legal action after a researcher publicly released six Windows zero-days and exploit code following a breakdown in coordinated discl

Bank Info Security
CRITICALZero Day

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

Microsoft has come out strongly in favor of Coordinated Vulnerability Disclosure (CVD), urging the research community to share their findings and give affected vendors an opportunity to better understand the impact and address them before they are publicly disclosed. The development comes after a researcher named Chaotic Eclipse (aka Nightmare-Eclipse) disclosed details of multiple zero-day

The Hacker News
CRITICALZero Day

Critical FortiClient EMS Vulnerability Exploited in Fresh Attacks

Fortinet rolled out hotfixes for the security defect in April, warning that it had been exploited in the wild as a zero-day and urging immediate patching. The post Critical FortiClient EMS Vulnerability Exploited in Fresh Attacks appeared first on SecurityWeek .

CVE-2026-35616
SecurityWeek