Vulnerability Library

search
ID
Packages
Summary
Affected versions
Published
Fix
GHSA-2cgq-h8xw-2v5j
  • Go/github.com/cri-o/cri-o
 CRI-O vulnerable to an arbitrary systemd property injection
  • See details.
 2024-04-30T09:39:38Z Fix available
GO-2024-2744
  • Go/github.com/authelia/authelia/v4
 Access control change may take longer than expected in github.com/authelia/authelia/v4
  • See details.
 2024-04-26T20:05:56Z Fix available
GO-2024-2743
  • Go/github.com/apache/incubator-answer
 XSS vulnerability via personal website in github.com/apache/incubator-answer
  • See details.
 2024-04-26T20:05:51Z Fix available
GHSA-9m6p-x4h2-6frq
  • Go/github.com/argoproj/argo-cd/v2
 Argo CD vulnerable to a Denial of Service via malicious jqPathExpressions in ignoreDifferences
  • See details.
 2024-04-26T16:40:35Z Fix available
GHSA-5fh7-7mw7-mmx5
  • Go/github.com/mattermost/mattermost-server
 Mattermost allows team admins to promote guests to team admins
  • See details.
 2024-04-26T09:30:35Z Fix available
GHSA-5qx9-9ffj-5r8f
  • Go/github.com/mattermost/mattermost-server
 Mattermost fails to fully validate role changes
  • See details.
 2024-04-26T09:30:34Z Fix available
GHSA-8f99-g2pj-x8w3
  • Go/github.com/mattermost/mattermost-server
 Mattermost crashes web clients via a malformed custom status
  • See details.
 2024-04-26T09:30:34Z Fix available
GHSA-p2wq-4ggp-45f3
  • Go/github.com/mattermost/mattermost-server
 Mattermost fails to limit the size of a request path
  • See details.
 2024-04-26T09:30:34Z Fix available
GHSA-vx97-8q8q-qgq5
  • Go/github.com/mattermost/mattermost-server
 Mattermost's detailed error messages reveal the full file path
  • See details.
 2024-04-26T09:30:34Z Fix available
GHSA-wj37-mpq9-xrcm
  • Go/github.com/mattermost/mattermost-server
 Mattermost fails to limit the number of active sessions
  • See details.
 2024-04-26T09:30:34Z Fix available
GHSA-7j7j-66cv-m239
  • Go/github.com/zitadel/zitadel
 ZITADEL's Improper Lockout Mechanism Leads to MFA Bypass
  • See details.
 2024-04-25T18:31:31Z Fix available
GHSA-m9w6-wp3h-vq8g
  • Go/github.com/coredns/coredns
 CoreDNS may return invalid cache entries
  • See details.
 2024-04-25T18:30:39Z Fix available
GHSA-x5m7-63c6-fx79
  • Go/github.com/openshift/cluster-monitoring-operator
 Cluster Monitoring Operator contains a credentials leak
  • See details.
 2024-04-25T18:30:39Z No fix available
GHSA-c3wv-qmjj-45r6
  • Go/github.com/containers/podman/v2
 Information disclosure in podman
  • See details.
 2024-04-24T21:42:22Z Fix available
GHSA-6g56-v9qg-jp92
  • Go/github.com/heketi/heketi
 Heketi Arbitrary Code Execution
  • See details.
 2024-04-24T21:35:47Z Fix available
GHSA-f9xf-jq4j-vqw4
  • Go/github.com/rancher/rancher
 Rancher does not properly specify ApiGroup when creating Kubernetes RBAC resources
  • See details.
 2024-04-24T21:02:01Z Fix available
Load more...