GO-2025-3950 Mattermost Missing Authorization vulnerability in github.com/mattermost/mattermost-server

Mattermost Missing Authorization vulnerability in github.com/mattermost/mattermost-server. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability...

GO-2025-3826 Possible ORM Leak Vulnerability in the Harbor in github.com/goharbor/harbor

Possible ORM Leak Vulnerability in the Harbor in github.com/goharbor/harbor. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability scanners, please...

GO-2025-3742 Grafana's datasource proxy API allows authorization checks to be bypassed in github.com/grafana/grafana

Grafana's datasource proxy API allows authorization checks to be bypassed in github.com/grafana/grafana. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from...

CVE-2023-2138

Use of Hard-coded Credentials in GitHub repository nuxtlabs/github-module prior to 1.6.2...

Poastal - The Email OSINT Tool

Poastal is an email OSINT tool that provides valuable information on any email address. With Poastal, you can easily input an email address and it will quickly answer several questions, providing you with crucial information. Features Determine the name of the person who has the email. Check if t...

Token Disclosure

@nuxtlabs/github-module is vulnerable to Token Disclosure. The vulnerability exists in the module.ts because it uses hard-coded credentials in the config file, which allows an attacker to gain sensitive information through the token in the public runtime config...

CVE-2023-2138

CVE-2023-2138 affects nuxtlabs/github-module prior to version 1.6.2. The root cause is a hard-coded GitHub token embedded in the module’s source, which granted access to multiple Nuxt-related GitHub repositories. The issue is described consistently across multiple sources (including Red Hat, GitH...

CVE-2023-2138 Use of Hard-coded Credentials in nuxtlabs/github-module

Use of Hard-coded Credentials in GitHub repository nuxtlabs/github-module prior to 1.6.2...

github-module 信任管理问题漏洞

github-module is a GitHub integration for Nuxt. A trust management issue vulnerability exists in nuxtlabs github-module versions prior to 1.6.2, which stems from the use of hard-coded credentials...

PT-2023-18155 · Nuxtlabs · Nuxtlabs/Github-Module

Name of the Vulnerable Software and Affected Versions: nuxtlabs/github-module versions prior to 1.6.2 Description: The issue involves the use of hard-coded credentials in the GitHub repository nuxtlabs/github-module. A hardcoded GitHub token was found in the source code, which had access to...