Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
GO-2023-1560
  • Go/github.com/flipped-aurora/gin-vue-admin
Path Traversal in gin-vue-admin in github.com/flipped-aurora/gin-vue-admin 20 Aug
  • Fix available
GO-2024-2955
  • Go/github.com/gin-contrib/cors
Gin mishandles a wildcard in the origin string in github.com/gin-contrib/cors 02 Jul
  • Fix available
GHSA-869c-j7wc-8jqv
  • Go/github.com/gin-gonic/gin
  • Go/github.com/gin-contrib/cors
Gin mishandles a wildcard at the end of an origin string 29 Jun
  • Fix available
  • Severity - 9.3 (Critical)
CVE-2019-25211
  • Debian:11/golang-github-gin-contrib-cors
  • Debian:12/golang-github-gin-contrib-cors
  • Debian:13/golang-github-gin-contrib-cors
  • github.com/gin-contrib/cors
See record for full details 29 Jun
  • Fix available
UBUNTU-CVE-2019-25211
  • Ubuntu:20.04:LTS/golang-github-gin-contrib-cors
  • Ubuntu:22.04:LTS/golang-github-gin-contrib-cors
  • Ubuntu:24.10/golang-github-gin-contrib-cors
  • Ubuntu:24.04:LTS/golang-github-gin-contrib-cors
See record for full details 29 Jun
  • No fix available
GO-2024-2928
  • Go/github.com/flipped-aurora/gin-vue-admin
SQL injection vulnerability in Gin-vue-admin in github.com/flipped-aurora/gin-vue-admin 28 Jun
  • Fix available
GO-2024-2702
  • Go/github.com/flipped-aurora/gin-vue-admin/server
Code injection vulnerability in github.com/flipped-aurora/gin-vue-admin/server 20 May
  • Fix available
GHSA-gv3w-m57p-3wc4
  • Go/github.com/flipped-aurora/gin-vue-admin/server
gin-vue-admin background arbitrary code coverage vulnerability 09 Apr
  • Fix available
  • Severity - 7.7 (High)
GO-2023-2113
  • Go/go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful
  • Go/go.opentelemetry.io/contrib/instrumentation/github.com/gin-gonic/gin/otelgin
  • Go/go.opentelemetry.io/contrib/instrumentation/github.com/gorilla/mux/otelmux
  • Go/go.opentelemetry.io/contrib/instrumentation/github.com/labstack/echo/otelecho
  • Go/go.opentelemetry.io/contrib/instrumentation/gopkg.in/macaron.v1/otelmacaron
  • Go/go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace
  • Go/go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
Memory exhaustion in go.opentelemetry.io/contrib/instrumentation 16 Oct 2023
  • Fix available
GHSA-rcjv-mgp8-qvmr
  • Go/go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
  • Go/go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful
  • Go/go.opentelemetry.io/contrib/instrumentation/github.com/gin-gonic/gin/otelgin
  • Go/go.opentelemetry.io/contrib/instrumentation/github.com/gorilla/mux/otelmux
  • Go/go.opentelemetry.io/contrib/instrumentation/github.com/labstack/echo/otelecho
  • Go/go.opentelemetry.io/contrib/instrumentation/gopkg.in/macaron.v1/otelmacaron
  • Go/go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace
OpenTelemetry-Go Contrib vulnerable to denial of service in otelhttp due to unbound cardinality metrics 16 Oct 2023
  • Fix available
  • Severity - 7.5 (High)
CVE-2023-29401
  • Debian:11/golang-github-gin-gonic-gin
  • Debian:12/golang-github-gin-gonic-gin
  • Debian:13/golang-github-gin-gonic-gin
  • github.com/gin-gonic/gin
See record for full details 08 Jun 2023
  • Fix available
  • Severity - 4.3 (Medium)
UBUNTU-CVE-2023-29401
  • Ubuntu:Pro:18.04:LTS/golang-github-gin-gonic-gin
  • Ubuntu:20.04:LTS/golang-github-gin-gonic-gin
  • Ubuntu:22.04:LTS/golang-github-gin-gonic-gin
  • Ubuntu:24.10/golang-github-gin-gonic-gin
  • Ubuntu:24.04:LTS/golang-github-gin-gonic-gin
See record for full details 08 Jun 2023
  • No fix available
  • Severity - 4.3 (Medium)
GHSA-2c4m-59x9-fr2g
  • Go/github.com/gin-gonic/gin
Gin Web Framework does not properly sanitize filename parameter of Context.FileAttachment function 12 May 2023
  • Fix available
  • Severity - 4.3 (Medium)
GO-2023-1737
  • Go/github.com/gin-gonic/gin
Improper handling of filenames in Content-Disposition HTTP header in github.com/gin-gonic/gin 11 May 2023
  • Fix available
GHSA-3vp4-m3rf-835h
  • Go/github.com/gin-gonic/gin
Improper input validation in github.com/gin-gonic/gin 04 May 2023
  • Fix available
  • Severity - 5.6 (Medium)
UBUNTU-CVE-2023-26125
  • Ubuntu:Pro:18.04:LTS/golang-github-gin-gonic-gin
  • Ubuntu:20.04:LTS/golang-github-gin-gonic-gin
  • Ubuntu:22.04:LTS/golang-github-gin-gonic-gin
  • Ubuntu:24.10/golang-github-gin-gonic-gin
  • Ubuntu:24.04:LTS/golang-github-gin-gonic-gin
See record for full details 04 May 2023
  • No fix available
  • Severity - 7.3 (High)