GO-2024-2613

See a problem?
Please try reporting it to the source first.

Source

https://pkg.go.dev/vuln/GO-2024-2613

Import Source

https://vuln.go.dev/ID/GO-2024-2613.json

JSON Data

https://api.osv.dev/v1/vulns/GO-2024-2613

Aliases

Published

2024-03-14T17:12:53Z

Modified

2024-05-20T16:03:47Z

Summary

Unauthorized Console access in github.com/1Panel-dev/1Panel

Details

If the user attempts to access a secure entry point and intercepts with Burp, they can get access to the console page. This access does not return data nor allow modification operations.

Database specific

{
    "url": "https://pkg.go.dev/vuln/GO-2024-2613",
    "review_status": "REVIEWED"
}

References

Affected packages

Go / github.com/1Panel-dev/1Panel

Package

Name: github.com/1Panel-dev/1Panel; View open source insights on deps.dev
Purl: pkg:golang/github.com/1Panel-dev/1Panel

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.1-lts