Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-gj54-gwj9-x2c6
  • Go/github.com/lf-edge/ekuiper/v2
  • Go/github.com/lf-edge/ekuiper
 eKuiper /config/uploads API arbitrary file writing may lead to RCE 4 days ago
  • Fix available
  • Severity - 7.3 (High)
GHSA-fv2p-qj5p-wqq4
  • Go/github.com/lf-edge/ekuiper/v2
  • Go/github.com/lf-edge/ekuiper
 LF Edge eKuiper vulnerable to File Path Traversal leading to file replacement 4 days ago
  • Fix available
  • Severity - 8.5 (High)
GHSA-h34r-jxqm-qgpr
  • Go/github.com/juju/utils/v4/cert
 juju/utils leaks private key in certs 6 days ago
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-v8fr-vxmw-6mf6
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost/server/v8
 Mattermost Incorrect Authorization vulnerability 30 Jun
  • Fix available
  • Severity - 5.4 (Medium)
GHSA-wgvp-jj4w-88hf
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost/server/v8
 Mattermost Incorrect Authorization vulnerability 30 Jun
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-56j4-446m-qrf6
  • Go/github.com/babylonlabs-io/babylon/v2
 Babylon vulnerable to chain half when transaction has fees different than `ubbn` 30 Jun
  • Fix available
  • Severity - 8.7 (High)
GHSA-cm2r-rg7r-p7gg
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
 File Browser vulnerable to insecure password handling 30 Jun
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-3v48-283x-f2w4
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
 File Browser's password protection of links is bypassable 30 Jun
  • No fix available
  • Severity - 3.1 (Low)
GHSA-w7qc-6grj-w7r8
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
 File Browser vulnerable to command execution allowlist bypass 30 Jun
  • Fix available
  • Severity - 8.0 (High)
GHSA-hc8f-m8g5-8362
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
 File Browser: Command Execution not Limited to Scope 30 Jun
  • No fix available
  • Severity - 8.0 (High)
GHSA-rmwh-g367-mj4x
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
 File Browser allows sensitive data to be transferred in URL 30 Jun
  • Fix available
  • Severity - 4.5 (Medium)
GHSA-fv92-fjc5-jj9h
  • Go/github.com/go-viper/mapstructure/v2
 mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data 27 Jun
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-3q2w-42mv-cph4
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
 filebrowser Allows Shell Commands to Spawn Other Commands 27 Jun
  • Fix available
  • Severity - 8.0 (High)
GHSA-4wx8-5gm2-2j97
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
 filebrowser allows Stored Cross-Site Scripting through the Markdown preview function 27 Jun
  • Fix available
  • Severity - 7.6 (High)
GHSA-jj2r-455p-5gvf
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
 filebrowser Sets Insecure File Permissions 27 Jun
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-fhc2-8qx8-6vj7
  • Go/github.com/hashicorp/vault
 Vault Community Edition rekey and recovery key operations can cause denial of service 26 Jun
  • Fix available
  • Severity - 3.1 (Low)
Load more...