Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2026/01/12 12:0 a.m.1 views

Iris 安全漏洞

Iris is a fast, simple, yet full-featured and very efficient Go networking framework open-sourced by DFIR-IRIS. A security vulnerability exists in Iris versions prior to 2.4.24, which stems from a bulk allocation vulnerability in the datastore file management system and the deletion of...

9.6CVSS6.5AI score0.00116EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/02/19 12:0 a.m.3 views

Iris Security Breach

Iris is a fast, simple, yet full-featured and very efficient Go networking framework. A security vulnerability exists in Iris versions prior to v2.4.0. An attacker exploiting this vulnerability could inject malicious script into an application, which could lead to unauthorized access, data theft,...

5.4CVSS6.6AI score0.00519EPSS
Exploits0References2
CNNVD
CNNVDadded 2023/12/22 12:0 a.m.2 views

Iris Security Breach

Iris is a fast, simple but fully featured and very efficient Go web framework. A security vulnerability exists in iris-web versions prior to v2.3.7, which stems from the presence of a stored cross-site scripting XSS vulnerability that could allow an attacker to inject malicious scripts into an...

5.4CVSS5.7AI score0.00433EPSS
Exploits0References3
CNNVD
CNNVDadded 2023/05/25 12:0 a.m.1 views

Iris 跨站脚本漏洞

Iris is a fast, simple, yet full-featured and very efficient Go web framework. A security vulnerability exists in Iris versions prior to 2.2.1, which stems from the presence of a stored cross-site scripting XSS vulnerability that allows an attacker to inject malicious script into an application,...

6.3CVSS5.4AI score0.00969EPSS
Exploits0References3
CNNVD
CNNVDadded 2021/12/24 12:0 a.m.2 views

Iris 后置链接漏洞

Iris is a fast, simple, yet full-featured and very efficient Go web framework. A security vulnerability exists in iris version 12, which stems from the program's insecure handling of filenames during uploads using the UploadFormFiles method could allow an attacker to write to an arbitrary locatio...

8.8CVSS8AI score0.00884EPSS
Exploits1References5
Snyk
Snykadded 2021/12/23 8:30 p.m.1 views

Arbitrary File Write

Overview github.com/kataras/iris/v12 is a fast, simple yet fully featured and very efficient web framework for Go. Affected versions of this package are vulnerable to Arbitrary File Write. The unsafe handling of file names during upload using UploadFormFiles method may enable attackers to write t...

8.8CVSS7.1AI score0.00884EPSS
Exploits1References2
Snyk
Snykadded 2021/12/23 8:30 p.m.1 views

Arbitrary File Write

Overview github.com/kataras/iris is a fast, simple yet fully featured and very efficient web framework for Go. Affected versions of this package are vulnerable to Arbitrary File Write. The unsafe handling of file names during upload using UploadFormFiles method may enable attackers to write to...

8.8CVSS7.1AI score0.00884EPSS
Exploits1References2
Rows per page
Query Builder