Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-q82r-2j7m-9rv4
  • Go/github.com/go-acme/lego
  • Go/github.com/go-acme/lego/v3
  • Go/github.com/go-acme/lego/v4
 github.com/go-acme/lego/v4/acme/api does not enforce HTTPS 6 hours ago
  • Fix available
  • Severity - 2.3 (Low)
GHSA-7rx2-769v-hrwf
  • Go/github.com/hashicorp/vault
 HashiCorp Vault ldap auth method may not have correctly enforced MFA 11 hours ago
  • Fix available
  • Severity - 6.5 (Medium)
GO-2025-3605
  • Go/github.com/mholt/archiver
  • Go/github.com/mholt/archiver/v3
 Vulnerable to Path Traversal via Crafted ZIP File in github.com/mholt/archiver yesterday
  • No fix available
GHSA-qx2q-88mx-vhg7
  • Go/github.com/gofiber/fiber/v2
 Fiber Crashes in BodyParser Due to Unvalidated Large Slice Index in Decoder yesterday
  • Fix available
  • Severity - 8.7 (High)
GHSA-fm3m-jrgm-5ppg
  • Go/github.com/tnborg/panel
 RatPanel can perform remote command execution without authorization 2 days ago
  • Fix available
  • Severity - 7.7 (High)
GHSA-3c93-92r7-j934
  • Go/github.com/grafana/grafana-infinity-datasource
 Grafana Infinity Datasource Plugin SSRF Vulnerability 2 days ago
  • Fix available
  • Severity - 5.0 (Medium)
GHSA-6c5r-4wfc-3mcx
  • Go/github.com/hashicorp/vault
 Hashicorp Vault has Incorrect Validation for Non-CA Certificates 5 days ago
  • Fix available
  • Severity - 6.8 (Medium)
GHSA-6h4p-m86h-hhgh
  • Go/github.com/hashicorp/vault
 Hashicorp Vault has Privilege Escalation Vulnerability 5 days ago
  • Fix available
  • Severity - 7.2 (High)
GHSA-mr4h-qf9j-f665
  • Go/github.com/hashicorp/vault
 Hashicorp Vault has Code Execution Vulnerability via Plugin Configuration 5 days ago
  • Fix available
  • Severity - 9.1 (Critical)
GHSA-mwgr-84fv-3jh9
  • Go/github.com/hashicorp/vault
 Hashicorp Vault has an Observable Discrepancy on Existing and Non-Existing Users 5 days ago
  • Fix available
  • Severity - 3.7 (Low)
GHSA-qgj7-fmq2-6cc4
  • Go/github.com/hashicorp/vault
 Hashicorp Vault has Lockout Feature Authentication Bypass 5 days ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-qv3p-fmv3-9hww
  • Go/github.com/hashicorp/vault
 Hashicorp Vault's TOTP Secrets Engine Susceptible to Code Reuse 5 days ago
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-v6r4-35f9-9rpw
  • Go/github.com/hashicorp/vault
 Hashicorp Vault has Login MFA Rate Limit Bypass Vulnerability 5 days ago
  • Fix available
  • Severity - 5.7 (Medium)
GHSA-8j63-96wh-wh3j
  • Go/github.com/1Panel-dev/1Panel/core
 1Panel agent certificate verification bypass leading to arbitrary command execution 5 days ago
  • Fix available
  • Severity - 8.1 (High)
GHSA-q6gg-9f92-r9wg
  • Go/github.com/traefik/traefik/v2
  • Go/github.com/traefik/traefik/v3
 Traefik Client Plugin's Path Traversal Vulnerability Allows Arbitrary File Overwrite and Remote Code Execution 5 days ago
  • Fix available
  • Severity - 7.3 (High)
GO-2025-3824
  • Go/github.com/ollama/ollama
 Ollama vulnerable to Cross-Domain Token Exposure in github.com/ollama/ollama 30 Jul
  • No fix available
Load more...