Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-gj54-gwj9-x2c6
  • Go/github.com/lf-edge/ekuiper/v2
  • Go/github.com/lf-edge/ekuiper
eKuiper /config/uploads API arbitrary file writing may lead to RCE 22 hours ago
  • Fix available
  • Severity - 7.3 (High)
GHSA-fv2p-qj5p-wqq4
  • Go/github.com/lf-edge/ekuiper/v2
  • Go/github.com/lf-edge/ekuiper
LF Edge eKuiper vulnerable to File Path Traversal leading to file replacement 22 hours ago
  • Fix available
  • Severity - 8.5 (High)
GHSA-h34r-jxqm-qgpr
  • Go/github.com/juju/utils/v4/cert
juju/utils leaks private key in certs 2 days ago
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-v8fr-vxmw-6mf6
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost/server/v8
Mattermost Incorrect Authorization vulnerability 3 days ago
  • Fix available
  • Severity - 5.4 (Medium)
GHSA-wgvp-jj4w-88hf
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost/server/v8
Mattermost Incorrect Authorization vulnerability 3 days ago
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-56j4-446m-qrf6
  • Go/github.com/babylonlabs-io/babylon/v2
Babylon vulnerable to chain half when transaction has fees different than `ubbn` 3 days ago
  • Fix available
  • Severity - 8.7 (High)
GHSA-cm2r-rg7r-p7gg
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
File Browser vulnerable to insecure password handling 3 days ago
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-3v48-283x-f2w4
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
File Browser's password protection of links is bypassable 3 days ago
  • No fix available
  • Severity - 3.1 (Low)
GHSA-w7qc-6grj-w7r8
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
File Browser vulnerable to command execution allowlist bypass 3 days ago
  • Fix available
  • Severity - 8.0 (High)
GHSA-hc8f-m8g5-8362
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
File Browser: Command Execution not Limited to Scope 3 days ago
  • No fix available
  • Severity - 8.0 (High)
GHSA-rmwh-g367-mj4x
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
File Browser allows sensitive data to be transferred in URL 3 days ago
  • Fix available
  • Severity - 4.5 (Medium)
GHSA-fv92-fjc5-jj9h
  • Go/github.com/go-viper/mapstructure/v2
mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data 6 days ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-3q2w-42mv-cph4
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
filebrowser Allows Shell Commands to Spawn Other Commands 6 days ago
  • Fix available
  • Severity - 8.0 (High)
GHSA-4wx8-5gm2-2j97
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
filebrowser allows Stored Cross-Site Scripting through the Markdown preview function 6 days ago
  • Fix available
  • Severity - 7.6 (High)
GHSA-jj2r-455p-5gvf
  • Go/github.com/filebrowser/filebrowser/v2
  • Go/github.com/filebrowser/filebrowser
filebrowser Sets Insecure File Permissions 6 days ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-fhc2-8qx8-6vj7
  • Go/github.com/hashicorp/vault
Vault Community Edition rekey and recovery key operations can cause denial of service 26 Jun
  • Fix available
  • Severity - 3.1 (Low)