Loading
In Gogs 0.11.91, MakeEmailPrimary in models/user_mail.go lacks a "not the owner of the email" check.
Use CWE-281, Gogs vendor hub and Gogs product page to widen CVE-2020-14958 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2026-25921, CVE-2026-26194 and CVE-2026-26022 for nearby disclosures in the same product family.