GO-2023-1560 Path Traversal in gin-vue-admin in github.com/flipped-aurora/gin-vue-admin

Path Traversal in gin-vue-admin in github.com/flipped-aurora/gin-vue-admin...

GO-2024-2928 SQL injection vulnerability in Gin-vue-admin in github.com/flipped-aurora/gin-vue-admin

SQL injection vulnerability in Gin-vue-admin in github.com/flipped-aurora/gin-vue-admin...

GO-2024-2702 Code injection vulnerability in github.com/flipped-aurora/gin-vue-admin/server

Gin-vue-admin has a code injection vulnerability in the backend. In the Plugin System - Plugin Template feature, an attacker can perform directory traversal by manipulating the 'plugName' parameter. They can create specific folders such as 'api', 'config', 'global', 'model', 'router', 'service',...

CVE-2024-31760

An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an attacker to escalate privileges via the Session Expiration component...

CVE-2024-31760

An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an attacker to escalate privileges via the Session Expiration component...