GO-2024-2702

See a problem?
Please try reporting it to the source first.

Source

https://pkg.go.dev/vuln/GO-2024-2702

Import Source

https://vuln.go.dev/ID/GO-2024-2702.json

JSON Data

https://api.test.osv.dev/v1/vulns/GO-2024-2702

Aliases

Published

2024-05-20T19:45:57Z

Modified

2024-05-20T20:12:50.418510Z

Summary

Code injection vulnerability in github.com/flipped-aurora/gin-vue-admin/server

Details

Gin-vue-admin has a code injection vulnerability in the backend. In the Plugin System -> Plugin Template feature, an attacker can perform directory traversal by manipulating the 'plugName' parameter. They can create specific folders such as 'api', 'config', 'global', 'model', 'router', 'service', and 'main.go' function within the specified traversal directory. Moreover, the Go files within these folders can have arbitrary code inserted based on a specific PoC parameter.

Database specific

{
    "review_status": "REVIEWED",
    "url": "https://pkg.go.dev/vuln/GO-2024-2702"
}

References

Affected packages

Go / github.com/flipped-aurora/gin-vue-admin/server

Package

Name: github.com/flipped-aurora/gin-vue-admin/server; View open source insights on deps.dev
Purl: pkg:golang/github.com/flipped-aurora/gin-vue-admin/server

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.0-20240409100909-b1b7427c6ea6

Ecosystem specific

{
    "imports": [
        {
            "path": "github.com/flipped-aurora/gin-vue-admin/server/api/v1/system",
            "symbols": [
                "AutoCodeApi.AutoPlug"
            ]
        }
    ]
}