GO-2025-4171 Gin-vue-admin has an arbitrary file deletion vulnerability in github.com/flipped-aurora/gin-vue-admin

Gin-vue-admin has an arbitrary file deletion vulnerability in github.com/flipped-aurora/gin-vue-admin...

CVE-2024-31760

An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an attacker to escalate privileges via the Session Expiration component...

GO-2023-1560 Path Traversal in gin-vue-admin in github.com/flipped-aurora/gin-vue-admin

Path Traversal in gin-vue-admin in github.com/flipped-aurora/gin-vue-admin...

GO-2024-2928 SQL injection vulnerability in Gin-vue-admin in github.com/flipped-aurora/gin-vue-admin

SQL injection vulnerability in Gin-vue-admin in github.com/flipped-aurora/gin-vue-admin...

GO-2024-2702 Code injection vulnerability in github.com/flipped-aurora/gin-vue-admin/server

Gin-vue-admin has a code injection vulnerability in the backend. In the Plugin System - Plugin Template feature, an attacker can perform directory traversal by manipulating the 'plugName' parameter. They can create specific folders such as 'api', 'config', 'global', 'model', 'router', 'service',...

CVE-2024-31760

An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an attacker to escalate privileges via the Session Expiration component...

CVE-2024-31760

An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an attacker to escalate privileges via the Session Expiration component...

CVE-2024-31760

An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an attacker to escalate privileges via the Session Expiration component...

CVE-2024-31760

CVE-2024-31760 affects sanluan flipped-aurora gin-vue-admin 2.4.x. The Session Expiration component allows privilege escalation. A PoC exists per the Exploitation metadata, and the CVSSv3.1 score is 4.7 (Medium). No patch/version remediation is specified in the provided documents; one source note...