Forgejo disclosure alleges RCE, takeover, leaks

// 51d agoSECURITY INCIDENT

Forgejo disclosure alleges RCE, takeover, leaks

On April 28, 2026, Julien Voisin published a carrot disclosure alleging multiple Forgejo security issues, including SSRF, auth weaknesses, information leaks, TOCTOU bugs, and missing browser defenses. He says he chained them into a working RCE proof of concept but shared only a redacted exploit result to push for a broader audit and fix effort.

// ANALYSIS

This reads like a high-signal security warning rather than a routine bug report: the author is explicitly saying the codebase is deep enough that one evening of digging produced an RCE chain, which is a bad look for a platform that now sits in critical infrastructure workflows.

–The disclosure is framed as a “carrot disclosure,” meaning the author is intentionally withholding full exploit details to force a broader fix response.
–The alleged impact is serious: RCE, secret leakage, persistent access, and OAuth2 privilege escalation.
–The post calls out multiple classes of weakness, suggesting systemic hardening gaps rather than a single isolated bug.
–Because the author reports a non-default configuration dependency for the RCE, the practical risk may vary by deployment, but the security posture concern is still substantial.

// TAGS

forgejosecurityvulnerabilityrcedisclosureopensourcegitself-hosted

DISCOVERED

51d ago

2026-04-29

PUBLISHED

51d ago

2026-04-28

RELEVANCE

9/ 10

AUTHOR

bo0tzz

// KEEP READING

More AI developer news from the feed

EXPLORE FULL FEED

MODEL55m ago

Zhipu AI drops GLM-5.2 MoE

Zhipu AI has released GLM-5.2, an open-weights Mixture-of-Experts large language model with a 1-million-token context window. Rebranded under Z.ai and released under the MIT license, the model utilizes an "IndexShare" optimization to reduce compute costs for agentic and coding workflows.

NEWS58m ago

Cursor showcases elite design at Compile conference

Cursor Ambassador Mathilde Anita Thierry highlighted the exceptional visual design and production quality at Compile, the inaugural, invite-only conference hosted by AI code editor Cursor in San Francisco. The event gathered researchers, designers, and developers to explore the future of agentic coding, coinciding with several major announcements from the Cursor team, including their upcoming GitHub competitor, Origin, and their new massive-scale model.

INFRA1h ago

Alchemy ships type-safe agent interface

Developer Sam Goodwin shared the design approach for AI agents within Alchemy, where the Alchemy.Agent acts as a type-safe string template interface capturing prompts and tools together. This interface is implemented on Cloudflare using Durable Objects (Cloudflare.Agent()), while the sandboxing feature of the Flue framework is utilized as a layer rather than a first-class citizen in the core model.