Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-mqqg-xjhj-wfgw
  • Go/miniflux.app/v2
 Stored XSS in Miniflux when opening a broken image due to unescaped ServerError in proxy handler 13 hours ago
  • Fix available
  • Severity - 4.8 (Medium)
GHSA-3qjf-qh38-x73v
  • Go/miniflux.app/v2
  • Go/miniflux.app
 Unauthenticated Miniflux user can bypass allowed networks check to obtain Prometheus metrics 13 hours ago
  • Fix available
  • Severity - 7.5 (High)
GO-2025-3586
  • Go/github.com/rancher/rancher
 Rancher: Restricted Administrator can change Administrator's passwords in github.com/rancher/rancher 14 hours ago
  • No fix available
GO-2025-3587
  • Go/github.com/apache/answer
 Apache Answer User Using External Images Potentially Discloses User Information in github.com/apache/answer 14 hours ago
  • Fix available
GO-2025-3588
  • Go/github.com/phires/go-guerrilla
 Go-Guerrilla SMTP Daemon allows the PROXY command to be sent multiple times in github.com/phires/go-guerrilla 14 hours ago
  • Fix available
GHSA-c2c3-pqw5-5p7c
  • Go/github.com/phires/go-guerrilla
 Go-Guerrilla SMTP Daemon allows the PROXY command to be sent multiple times yesterday
  • Fix available
  • Severity - 5.3 (Medium)
GO-2025-3585
  • Go/github.com/beego/beego
  • Go/github.com/beego/beego/v2
 Beego allows Reflected/Stored XSS in Beego's RenderForm() Function Due to Unescaped User Input in github.com/beego/beego yesterday
  • Fix available
GO-2025-3581
  • Go/github.com/jaredallard/archives
 github.com/jaredallard/archives Has Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') yesterday
  • Fix available
GO-2025-3583
  • Go/github.com/NethermindEth/juno
 Nethermind Juno Potential Denial of Service (DoS) via Integer Overflow in github.com/NethermindEth/juno yesterday
  • Fix available
GO-2025-3584
  • Go/go.rgst.io/stencil
  • Go/go.rgst.io/stencil/v2
 go.rgst.io/stencil/v2 vulnerable to Path Traversal yesterday
  • Fix available
GO-2025-3582
  • Go/github.com/ollama/ollama
 Ollama Denial of Service (DoS) via Null Pointer Dereference in github.com/ollama/ollama yesterday
  • No fix available
GHSA-8p83-cpfg-fj3g
  • Go/github.com/rancher/rancher
 Rancher: Restricted Administrator can change Administrator's passwords yesterday
  • Fix available
  • Severity - 9.1 (Critical)
GHSA-wqcc-mfhw-53pc
  • Go/github.com/apache/answer
 Apache Answer User Using External Images Potentially Discloses User Information yesterday
  • Fix available
  • Severity - 1.1 (Low)
GO-2025-3548
  • Go/github.com/ollama/ollama
 Ollama Vulnerable to Denial of Service (DoS) via Crafted GZIP in github.com/ollama/ollama 2 days ago
  • No fix available
GO-2025-3557
  • Go/github.com/ollama/ollama
 Ollama Allocation of Resources Without Limits or Throttling vulnerability in github.com/ollama/ollama 2 days ago
  • No fix available
GO-2025-3558
  • Go/github.com/ollama/ollama
 Ollama Allows Out-of-Bounds Read in github.com/ollama/ollama 2 days ago
  • No fix available
Load more...