12 matches found
Path Traversal
github.com/patrickhener/goshs is vulnerable to Path Traversal. The vulnerability is due to a missing return statement in the tdeleteFile function after the path traversal check, which allows an attacker to bypass path validation and perform unauthorized file deletion through crafted traversal pat...
PT-2026-36883
Name of the Vulnerable Software and Affected Versions goshs versions prior to 2.0.2 Description The PUT upload handler in httpserver/updown.go lacks Cross-Site Request Forgery CSRF token validation. CSRF is a type of attack that tricks a victim into submitting a malicious request. This deficiency...
CVE-2026-40903 Goshs - ArtiPACKED Vulnerability – GitHub Actions Credential Persistence
goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.6, goshs has an ArtiPACKED vulnerability. ArtiPACKED can lead to leakage of the GITHUBTOKEN through workflow artifacts, even though the token is not present in the repository source code. This vulnerability is fixed in 2.0.0-beta.6...
goshs 访问控制错误漏洞
Goshs is a simple HTTP server developed by Patrick Hener using Go language. Versions of Goshs prior to 2.0.0-beta.6 contained an access control vulnerability. This vulnerability occurred when using the basic authentication syntax with an empty username recorded in the documentation, without...
SUSE CVE-2026-40189
goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.4, goshs enforces the documented per-folder .goshs ACL/basic-auth mechanism for directory listings and file reads, but it does not enforce the same authorization checks for state-changing routes. An unauthenticated attacker can upload...
CVE-2026-34581 goshs has Auth Bypass via Share Token
goshs is a SimpleHTTPServer written in Go. From version 1.1.0 to before version 2.0.0-beta.2, when using the Share Token it is possible to bypass the limited selected file download with all the gosh functionalities, including code exec. This issue has been patched in version 2.0.0-beta.2...
CVE-2025-46816
goshs is a SimpleHTTPServer written in Go. Starting in version 0.3.4 and prior to version 1.0.5, running goshs without arguments makes it possible for anyone to execute commands on the server. The function dispatchReadPump does not checks the option cli -c, thus allowing anyone to execute arbitra...
CVE-2025-46816 goshs route not protected, allows command execution
goshs is a SimpleHTTPServer written in Go. Starting in version 0.3.4 and prior to version 1.0.5, running goshs without arguments makes it possible for anyone to execute commands on the server. The function dispatchReadPump does not checks the option cli -c, thus allowing anyone to execute arbitra...
CVE-2025-46816
The CVE-2025-46816 affects goshs, a Go-based SimpleHTTPServer. Versions 0.3.4 up to, but not including, 1.0.5 are vulnerable due to the dispatchReadPump path not validating the -c CLI option, enabling remote command execution via websockets when the server is started without arguments. This is co...
GHSA-RWJ2-W85G-5CMM goshs route not protected, allows command execution
Summary It seems that when running goshs without arguments it is possible for anyone to execute commands on the server. This was tested on version 1.0.4 of goshs. The command function was introduced in version 0.3.4. Details It seems that the function dispatchReadPump does not checks the option c...
goshs route not protected, allows command execution
Summary It seems that when running goshs without arguments it is possible for anyone to execute commands on the server. This was tested on version 1.0.4 of goshs. The command function was introduced in version 0.3.4. Details It seems that the function dispatchReadPump does not checks the option c...
PT-2025-19985 · Goshs · Goshs
Name of the Vulnerable Software and Affected Versions: goshs versions 0.3.4 through 1.0.4 Description: The issue allows anyone to execute commands on the server when goshs is run without arguments. This is due to the dispatchReadPump function not checking the -c option, allowing arbitrary command...