Vulnerabilities

CVE-2026-30955

by Fred · 13/03/2026

Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. Prior to 2.2.4, An API endpoint accepts unbounded request bodies without any size limit. An authenticated user can cause an OOM kill and complete service disruption for all users. This vulnerability is fixed in 2.2.4.

More information : https://github.com/Forceu/Gokapi/releases/tag/v2.2.4

Similar

Tags: Cybersecurity Alert