Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-5vpc-35f4-r8w6
  • Go/github.com/containers/buildah
 Buildah allows build breakout using malicious Containerfiles and concurrent builds 2 hours ago
  • Fix available
GHSA-36gq-35j3-p9r9
  • Go/github.com/compose-spec/compose-go/v2
 Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loop 3 hours ago
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-wpfp-cm49-9m9q
  • Go/github.com/hashicorp/go-slug
 HashiCorp go-slug Vulnerable to Zip Slip Attack 5 hours ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-3qc3-mx6x-267h
  • Go/github.com/writefreely/writefreely
 Insecure default config access in WriteFreely yesterday
  • No fix available
  • Severity - 8.4 (High)
GHSA-c9p4-xwr9-rfhx
  • Go/zotregistry.dev/zot
 Zot IdP group membership revocation ignored 4 days ago
  • Fix available
  • Severity - 7.3 (High)
GO-2025-3407
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost-server/v5
  • Go/github.com/mattermost/mattermost-server/v6
  • Go/github.com/mattermost/mattermost/server/v8
 Mattermost webapp crash via a crafted post in github.com/mattermost/mattermost-server 4 days ago
  • Fix available
GHSA-4ff6-858j-r822
  • Go/github.com/matrix-org/gomatrixserverlib
 Gomatrixserverlib Server-Side Request Forgery (SSRF) on redirects and federation 5 days ago
  • Fix available
  • Severity - 4.3 (Medium)
GO-2025-3396
  • Go/github.com/matrix-org/gomatrixserverlib
 Server-Side Request Forgery (SSRF) on redirects and federation in github.com/matrix-org/gomatrixserverlib 5 days ago
  • Fix available
GO-2025-3394
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost-server/v5
  • Go/github.com/mattermost/mattermost-server/v6
  • Go/github.com/mattermost/mattermost/server/v8
 Mattermost fails to properly validate post props in github.com/mattermost/mattermost-server 5 days ago
  • Fix available
GO-2025-3393
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost-server/v5
  • Go/github.com/mattermost/mattermost-server/v6
  • Go/github.com/mattermost/mattermost/server/v8
 Mattermost Incorrect Type Conversion or Cast in github.com/mattermost/mattermost-server 5 days ago
  • Fix available
GO-2025-3392
  • Go/github.com/mattermost/mattermost-server
  • Go/github.com/mattermost/mattermost-server/v5
  • Go/github.com/mattermost/mattermost-server/v6
  • Go/github.com/mattermost/mattermost/server/v8
 Mattermost fails to properly validate post props in github.com/mattermost/mattermost-server 5 days ago
  • Fix available
GO-2025-3397
  • Go/github.com/t2bot/matrix-media-repo
 matrix-media-repo (MMR) allows unauthenticated writes to the media repository, which may allow planting of problematic content in github.com/t2bot/matrix-media-repo 5 days ago
  • Fix available
GO-2025-3398
  • Go/github.com/t2bot/matrix-media-repo
 matrix-media-repo (MMR) allows a denial of service through memory exhaustion in github.com/t2bot/matrix-media-repo 5 days ago
  • Fix available
GO-2025-3399
  • Go/github.com/t2bot/matrix-media-repo
 Matrix Media Repo (MMR) allows Server-Side Request Forgery (SSRF) on redirects and federation in github.com/t2bot/matrix-media-repo 5 days ago
  • Fix available
GO-2025-3400
  • Go/github.com/t2bot/matrix-media-repo
 Matrix Media Repo (MMR) allows untrusted file formats can be thumbnailed, invoking potentially further untrusted decoders in github.com/t2bot/matrix-media-repo 5 days ago
  • Fix available
GO-2025-3401
  • Go/github.com/t2bot/matrix-media-repo
 matrix-media-repo (MMR) allows denial of service/high operating costs through unauthenticated downloads in github.com/t2bot/matrix-media-repo 5 days ago
  • Fix available
Load more...