Gitea repository migration remote command execution exploit.
- Run an HTTP filesystem server with the files in this repository.
- Edit the command to be exeucted in
api/v1/repos/e99/exp/pulls/1/index.html L96. - Migrate remote repository with URL
http://<your_host>/e99/expon the Gitea instance. - Pwnned!
https://tttang.com/archive/1607/ (Chinese)
@wuhan005 @Li4n0 from Vidar-Team
This repository is only for security researches/teaching purposes, use at your own risk!