Lucene search
K

12 matches found

CNNVD
CNNVD
added 2026/06/04 12:0 a.m.6 views

Iris 安全漏洞

Iris is an open-source fast, simple, yet fully functional and highly efficient Go network framework developed by DFIR-IRIS. Versions of Iris prior to 2.4.28 contained security vulnerabilities, which stemmed from allowing users to manipulate API requests to modify values in the database...

4.3CVSS5.3AI score0.00183EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.6 views

Iris 安全漏洞

Iris is an open-source fast, simple, yet fully functional and highly efficient Go web framework developed by DFIR-IRIS. Versions of Iris prior to 2.4.28 contained security vulnerabilities, which were caused by improper file upload validation. These vulnerabilities could lead to the hosting of...

6.3CVSS5AI score0.00175EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.6 views

Iris 安全漏洞

Iris is an open-source fast, simple, yet fully functional and highly efficient Go web framework developed by DFIR-IRIS. Versions of Iris prior to 2.4.28 contained security vulnerabilities. These vulnerabilities stemmed from the ability to create alerts for unassigned customers, which could be...

5.4CVSS5.2AI score0.00174EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.9 views

Iris 安全漏洞

Iris is a fast, simple, yet fully functional and highly efficient Go network framework developed under the DFIR-IRIS open source project. Versions of Iris prior to 2.4.28 contained security vulnerabilities, which were caused by the return of unnecessary sensitive data...

6.5CVSS5.2AI score0.00232EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.6 views

Iris 授权问题漏洞

Iris is an open-source fast, simple, yet fully functional and highly efficient Go network framework developed by DFIR-IRIS. Versions of Iris prior to 2.4.28 had an authorization issue vulnerability. This vulnerability stemmed from the GraphQL endpoints not enforcing authorization checks, which...

7.1CVSS5.3AI score0.00246EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/12 12:0 a.m.3 views

Iris 安全漏洞

Iris is a fast, simple, yet full-featured and very efficient Go networking framework open-sourced by DFIR-IRIS. A security vulnerability exists in Iris versions prior to 2.4.24, which stems from a bulk allocation vulnerability in the datastore file management system and the deletion of...

9.6CVSS6.5AI score0.00298EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/19 12:0 a.m.5 views

Iris Security Breach

Iris is a fast, simple, yet full-featured and very efficient Go networking framework. A security vulnerability exists in Iris versions prior to v2.4.0. An attacker exploiting this vulnerability could inject malicious script into an application, which could lead to unauthorized access, data theft,...

5.4CVSS6.6AI score0.00337EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/12/22 12:0 a.m.3 views

Iris Security Breach

Iris is a fast, simple but fully featured and very efficient Go web framework. A security vulnerability exists in iris-web versions prior to v2.3.7, which stems from the presence of a stored cross-site scripting XSS vulnerability that could allow an attacker to inject malicious scripts into an...

5.4CVSS5.7AI score0.00298EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/05/25 12:0 a.m.3 views

Iris 跨站脚本漏洞

Iris is a fast, simple, yet full-featured and very efficient Go web framework. A security vulnerability exists in Iris versions prior to 2.2.1, which stems from the presence of a stored cross-site scripting XSS vulnerability that allows an attacker to inject malicious script into an application,...

6.3CVSS5.4AI score0.00382EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/12/24 12:0 a.m.3 views

Iris 后置链接漏洞

Iris is a fast, simple, yet full-featured and very efficient Go web framework. A security vulnerability exists in iris version 12, which stems from the program's insecure handling of filenames during uploads using the UploadFormFiles method could allow an attacker to write to an arbitrary locatio...

8.8CVSS8AI score0.01822EPSS
Exploits1References5
Snyk
Snyk
added 2021/12/23 8:30 p.m.1 views

Arbitrary File Write

Overview github.com/kataras/iris/v12 is a fast, simple yet fully featured and very efficient web framework for Go. Affected versions of this package are vulnerable to Arbitrary File Write. The unsafe handling of file names during upload using UploadFormFiles method may enable attackers to write t...

8.8CVSS7.1AI score0.01822EPSS
Exploits1References2
Snyk
Snyk
added 2021/12/23 8:30 p.m.2 views

Arbitrary File Write

Overview github.com/kataras/iris is a fast, simple yet fully featured and very efficient web framework for Go. Affected versions of this package are vulnerable to Arbitrary File Write. The unsafe handling of file names during upload using UploadFormFiles method may enable attackers to write to...

8.8CVSS7.1AI score0.01822EPSS
Exploits1References2
Rows per page
Query Builder