Server-Side Request Forgery (SSRF)

github.com/kubevela/kubevela is vulnerable to server-side request forgery. The vulnerability is due to common.go because the request address in the warehouse is not properly restricted which allows an attacker to cause a SSRF bypass via a crafted url...

CVE-2022-41719 Panic in github.com/shamaton/msgpack/v2

Unmarshal can panic on some inputs, possibly allowing for denial of service attacks...

GO-2022-1098 Denial of service in message decoding in github.com/btcsuite/btcd

Erroneous message decoding can cause denial of service. Improper checking of maximum witness size during node message decoding prevented nodes in Lightning Labs lnd before 0.15.2-beta to sync...

Arbitrary Code Execution

github.com/pingcap/tidb is vulnerable to arbitrary code execution. The vulnerability exists because the data source name string in the database connection is not properly neutralized which allows an attacker to inject malicious code and get read access to files in the system...

btcd mishandles witness size checking

btcd before 0.23.2, as used in Lightning Labs lnd before 0.15.2-beta and other Bitcoin-related products, mishandles witness size checking. Specific Go Packages Affected github.com/btcsuite/btcd/wire...

Privilege Escalation

github.com/golang/go is vulnerable to Privilege Escalation. The vulnerability exists due to the unsanitized NULL values in the Start function of exec.go, allowing an attacker to maliciously set environment variables on windows. For example, the environment variable string A=B\x00C=D sets the...

GO-2022-1086 Server-side request forger via X-Skipper-Proxy in github.com/zalando/skipper

An attacker can access the internal metadata server or other unauthenticated URLs by adding a specific header X-Skipper-Proxy to the http request...

SQL Injection

github.com/ibax-io/go-ibax is vulnerable to SQL injection. The vulnerability exists due to improper implementation of the getOpenColumnsInfoHandler function of database.go which allows an attacker to inject and execute malicious SQL queries in the system...

GO-2022-1071 Denial of service in flux controllers in github.com/fluxcd modules

Flux controllers are vulnerable to a denial of service attack. Users that have permissions to change Flux's objects, either through a Flux source or directly within a cluster, can provide invalid data to fields .spec.interval or .spec.timeout and structured variations of these fields, causing the...

GHSA-MQQV-CHPX-VQ25 goxmldsig vulnerable to crash on nil-pointer dereference caused by sending malformed XML signatures

This affects all versions of package github.com/russellhaering/goxmldsig prior to 1.1.1. There is a crash on nil-pointer dereference caused by sending malformed XML signatures. This issue is patched in version 1.1.1...

Cross-site Scripting (XSS)

github.com/dutchcoders/transfer.sh is vulnerable to cross-site scriptingXSS attacks. The library is unable to determine the content type of the file inserted through ContentType metadata, which allows an attacker to inject and execute malicious javascript on victim's browser...

Privilege Escalation

github.com/bytebase/bytebase is vulnerable to privilege escalation. The vulnerability exists due to a lack of verification and validation of users allowing an attacker to access admin 'projects' at endpoint “/api/project?user=$userId”...

GO-2022-1026 Incorrect validation of root DNSSEC public keys in github.com/peterzen/goresolver

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain...

Improper Authorization

github.com/goharbor/harbor is vulnerable to improper authorization. A remote authenticated attacker is able to revoke the permissions or impersonate a robot account due to improper validation of the user permissions when updating the robot account through the vulnerable updateV2Robot function...

Authorization Bypass

github.com/bytebase/bytebase is vulnerable to authorization bypass. The vulnerability exists in issue.ts because the access to admin issues is not properly restricted for low privilege users which allows an attacker to view open and closed issues by admin...

Path Traversal

github.com/cloudwego/hertz is vulnerable to path traversal. The vulnerability exists in normalizePath function of uri.go because the backslash restrictions are not properly implemented which allows an attacker to read any file in windows server...

Denial Of Service (DoS)

github.com/apple/swift-nio-extras is vulnerable to denial of service. The vulnerability exists because complete HTTP body decompression is not properly detected and the code repeatedly attempts to decompress the data appended to the HTTP message causing an infinite loop which leads to an...

Information Disclosure

github.com/cri-o/cri-o is vulnerable to information disclosure.The vulnerability exists in setupContainerUser function in containercreate.go due to incorrect handling of the supplementary groups which allows an attacker to gain permissions and execute a binary code via container...

GHSA-4P6F-M4F9-CH88 Binary vulnerable to Slice Memory Allocation with Excessive Size Value

Impact What kind of vulnerability is it? Who is impacted? The vulnerability is a memory allocation vulnerability that can be exploited to allocate slices in memory with arbitrary excessive size value, which can either exhaust available memory or crash the whole program. When using...

Cross-site Scripting (XSS)

github.com/ouqiang/gocron is vulnerable to cross-site scripting. The vulnerability exists due to lack of sanitization in scope.row.hostname parameter in list.vue which allows a remote attacker to inject and execute malicious javascript into the system...