Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-22vc-5pgw-644q
  • Go/github.com/benc-uk/kubeview
KubeView vulnerable to full cluster takeover due to improper authentication
  • See details.
2022-12-02T22:27:39Z No fix available
GHSA-7rg2-cxvp-9p7p
  • Go/github.com/prometheus/exporter-toolkit
  • Go/github.com/prometheus/exporter-toolkit
Prometheus Exporter-Toolkit is vulnerable to authentication bypass
  • See details.
2022-12-02T22:25:46Z Fix available
GHSA-47xh-qxqv-mgvg
  • Go/github.com/mittwald/kube-httpcache
kube-httpcache is vulnerable to Cross-Site Request Forgery (CSRF)
  • See details.
2022-12-02T22:24:44Z Fix available
GHSA-cvh4-cjc9-84qm
  • Go/github.com/owncast/owncast
owncast is vulnerable to SQL Injection
  • See details.
2022-12-02T22:20:46Z Fix available
GHSA-j2jp-wvqg-wc2g
  • Go/github.com/crewjam/saml
crewjam/saml vulnerable to signature bypass via multiple Assertion elements due to improper authentication
  • See details.
2022-12-01T22:13:04Z Fix available
GHSA-qccm-wmcq-pwr6
  • Go/tailscale.com/cmd
Tailscale daemon is vulnerable to information disclosure via CSRF
  • See details.
2022-12-01T22:12:32Z Fix available
GHSA-m74x-fxjh-3qh9
  • Go/github.com/free5gc/free5gc
Free5gc vulnerable to uncontrolled resource consumption
  • See details.
2022-11-30T21:22:44Z No fix available
GHSA-3p3g-vpw6-4w66
  • Go/github.com/ory/hydra
  • Go/github.com/ory/hydra/oauth2
Authentication Bypass in hydra
  • See details.
2022-11-30T00:22:35Z Fix available
GO-2022-1129
  • Go/github.com/crewjam/saml
  • See details.
2022-11-29T18:03:21Z Fix available
GO-2022-1130
  • Go/github.com/prometheus/exporter-toolkit
  • See details.
2022-11-29T16:33:47Z Fix available
GO-2022-0972
  • Go/github.com/shamaton/msgpack/v2
  • See details.
2022-11-29T16:21:56Z Fix available
GHSA-6cqj-6969-p57x
  • Go/github.com/codenotary/immudb/pkg/client
Lack of proper validation of server UUID can be used by the server to trick the client to accept invalid proofs
  • See details.
2022-11-28T16:16:29Z Fix available
GHSA-672p-m5jq-mrh8
  • Go/github.com/codenotary/immudb/pkg/client
Insufficient Verification of Proofs generated by the immudb server in client SDK.
  • See details.
2022-11-28T16:03:40Z Fix available
GHSA-5jph-wrq7-v9hf
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost-server
Denial of service in Mattermost
  • See details.
2022-11-26T20:18:04Z Fix available
GHSA-v42f-hq78-8c5m
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost-server
Denial of service in Mattermost
  • See details.
2022-11-26T20:03:44Z Fix available
GHSA-7fxj-fr3v-r9gj
  • Go/github.com/pingcap/tidb
  • Go/github.com/pingcap/tidb
TiDB vulnerable to Use of Externally-Controlled Format String
  • See details.
2022-11-24T01:13:44Z No fix available