GO-2026-4862

See a problem?
Please try reporting it to the source first.

Source

https://pkg.go.dev/vuln/GO-2026-4862

Import Source

https://vuln.go.dev/ID/GO-2026-4862.json

JSON Data

https://api.osv.dev/v1/vulns/GO-2026-4862

Aliases

Published

2026-03-26T20:33:09Z

Modified

2026-03-26T21:04:16.819013Z

Summary

OpenBao has Reflected XSS in its OIDC authentication error message in github.com/openbao/openbao

Details

OpenBao has Reflected XSS in its OIDC authentication error message in github.com/openbao/openbao

Database specific

{
    "review_status": "UNREVIEWED",
    "url": "https://pkg.go.dev/vuln/GO-2026-4862"
}

References

Affected packages

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.0-20260325133417-6e2b2dd84f0e

source

"https://vuln.go.dev/ID/GO-2026-4862.json"