CVE-2022-25978

All versions of the package github.com/usememos/memos/server are vulnerable to Cross-site Scripting XSS due to insufficient checks on external resources, which allows malicious actors to introduce links starting with a javascript: scheme...

Cross site scripting

All versions of the package github.com/usememos/memos/server are vulnerable to Cross-site Scripting XSS due to insufficient checks on external resources, which allows malicious actors to introduce links starting with a javascript: scheme...

GO-2023-1559 Denial of service via HAMT decoding panic in github.com/ipfs/go-unixfsnode

Trying to read malformed HAMT sharded directories can cause panics and virtual memory leaks. If you are reading untrusted user input, an attacker can then trigger a panic. This is caused by a bogus fanout parameter in the HAMT directory nodes. There are no known workarounds users are advised to...

GO-2023-1557 Denial of service via HAMT decoding panic in github.com/ipfs/go-unixfs

Trying to read malformed HAMT sharded directories can cause panics and virtual memory leaks. If you are reading untrusted user input, an attacker can then trigger a panic. This is caused by bogus "fanout" parameter in the HAMT directory nodes. A workaround is to not feed untrusted user data to th...

Arbitrary File Write

github.com/openshift/source-to-image is vulnerable to Arbitrary File Write. The vulnerability exists due to the improper input validation in tar.go, which allows an attacker to overwrite files outside of the working directory via a Zip Slip...

CVE-2023-23631 HAMT Decoding Panics in github.com/ipfs/go-unixfsnode

github.com/ipfs/go-unixfsnode is an ADL IPLD prime node that wraps go-codec-dagpb's implementation of protobuf to enable pathing. In versions priot to 1.5.2 trying to read malformed HAMT sharded directories can cause panics and virtual memory leaks. If you are reading untrusted user input, an...

Information Disclosure

github.com/anchore/syft is vulnerable to Information Disclosure. The vulnerability exists due to the SYFTATTESTPASSWORD environment variable in the syft logs leaking when -vv or -vvv are used in the syft command which is any log level = DEBUG and in the attestation or SBOM only when the syft-json...

GHSA-33M6-Q9V5-62R7 go.uuid has Predictable UUID Identifiers

CVE Description for go.uuid A flaw was found in github.com/satori/go.uuid in versions from commit 0ef6afb2f6cdd6cdaeee3885a95099c63f18fc8c to d91630c8510268e75203009fe7daf2b8e1d60c45. Due to insecure randomness in the g.rand.Read function the generated UUIDs are predictable for an attacker. Updat...

GO-2023-1295 SQL injection in github.com/square/squalor

There is a potential for SQL injection in the table name parameter...

Server-Side Request Forgery (SSRF)

github.com/hakobe/paranoidhttp is vulnerable to Server-Side Request Forgery. The vulnerability exists due to the ip.To4 parameter in the safeAddr function of client.go, as the library matches :: to the 127.0.0.1 address, but lacks filtering of private address, which allows a remote attacker to...

Command Injection

github.com/rancher/rancher is vulnerable to Command Injection. The vulnerability exists because git.go doesn't properly validate user input, allowing an attacker to inject and execute maliciously crafted commands through the rancher host...

github.com/openshift/apiserver-library-go Improper Input Validation vulnerability

A flaw was found in github.com/openshift/apiserver-library-go, used in OpenShift 4.12 and 4.11, that contains an issue that can allow low-privileged users to set the seccomp profile for pods they control to "unconfined." By default, the seccomp profile used in the restricted-v2 Security Context...

Privilege Escalation

github.com/nektos/act is vulnerable to Privilege Escalation. The vulnerability exists in multiple functions of server.go because the path inputs are not sanitized which allows an attacker to download and overwrite arbitrary files on the host...

Path Traversal

github.com/go-sonic/sonic is vulnerable to Path Traversal. The vulnerability exists because the BackupWholeSite function of backup.go does not properly sanitize the file path in the toBackupPath parameter, allowing an attacker to access files outside the expected directory...

Session Fixation

github.com/KubeOperator/kubepi is vulnerable to Session Fixation. The vulnerability exists due to insufficient session expiration mechanisms in the library, allowing an attacker to hijack the legitimate user sessions...

Denial Of Service (DoS)

github.com/btcsuite/go-socks is vulnerable to Denial of Service DoS. The vulnerability exists because the RemoteAddr and LocalAddr methods on the returned net.Conn may call themselves, leading to an infinite loop which will crash the program through a stack overflow...

Hash Collision

github.com/robotsandpencils/go-saml is vulnerable to hash collision attacks. A remote attacker is able to cause hash collisions through the use of vulnerable SHA-1 in authnrequest.go and authnresponse.go files...

Cross-site Request Forgery (CSRF)

github.com/go-macaron/csrf is vulnerable to Cross-site Request Forgery CSRF. The vulnerability exists because the Generate function in csrf.go does not set the secure mode for the CSRF cookie as the value is hardcoded to false for the corresponding arguments of SetCookie, allowing an attacker to...

Denial Of Service (DoS)

github.com/ipld/go-codec-dagpb is vulnerable to denial of service. The vulnerability exists when dag-pb codec decodes an invalid block which allows an attacker to cause an application crash...

Path Injection

github.com/fkie-cad/yapscan is vulnerable to path injection. The vulnerability exists due to lack of permission validations in the report receiver server which allows an attacker to perform log injections...