CVE-2020-7664

In all versions of the package github.com/unknwon/cae/zip, the ExtractTo function doesn't securely escape file paths in zip archives which include leading or non-leading "..". This allows an attacker to add or replace files system-wide...

github.com Improper Access Control vulnerability OBB-1202505

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CVE-2020-7664 Arbitrary File Write via Archive Extraction (Zip Slip)

In all versions of the package github.com/unknwon/cae/zip, the ExtractTo function doesn't securely escape file paths in zip archives which include leading or non-leading "..". This allows an attacker to add or replace files system-wide...

CVE-2020-7664

The CVE-2020-7664 issue affects the Go package github.com/unknwon/cae/zip, specifically the ExtractTo function. The vulnerability arises because ExtractTo does not securely escape file paths in zip archives that contain leading or non-leading “..”, enabling path traversal that could allow an atta...

filmlondon.org.uk Cross Site Scripting vulnerability OBB-1194083

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Insecure Access Control

github.com/hashicorp/consul uses an insecure access control. The scope of local and global tokens are not properly enforced, allowing local ACL tokens to be used in other data centers...

Spyeye - Script To Generate Win32 .Exe File To Take Screenshots

Script to generate Win32 .exe file to take screenshots every 10 seconds. Features: Works on WAN: Port Forwarding by Serveo.net Fully Undetectable FUD - Don't Upload to virustotal.com! Legal disclaimer: Usage of SpyEye for attacking targets without prior mutual consent is illegal. It's the end...

Denial Of Service (DoS)

github.com/apache/thrift is vulnerable to denial of service DoS. The vulnerability exists because it does not properly handle unexpected data despite there was a partial fix, allowing an attacker to send malicious payloads to trigger an application crash...

Unauthorized Access

github.com/openshift/cluster-kube-apiserver-operator allows unauthorized access. Users with access to create pods also have the ability to schedule workloads on master nodes. Pods with permission to access the host network, running on master nodes, can retrieve security credentials for the master...

Open Redirection

github.com/go-macaron/macaron is vulnerable to open redirection. Lack of validation of the path URL allows a remote attacker to redirect users to a malicious site to steal user credentials...

Improper Access Control

github.com/gorilla/handlers is vulnerable to improper access control. The vulnerability exists because it does not perform sufficient origin header access checks due to the misconfiguration of CORS, allowing an attacker to send malicious AJAX requests or HTML Document through it bypassing the sam...

Denial Of Service (DoS)

github.com/go-yaml/yaml is vulnerable to denial of service. An authorized user is able to crash the application by sending malicious YAML payloads to cause kube-apiserver to consume excessive CPU cycles...

Denial Of Service (DoS)

github.com/gambol99/go-marathon is vulnerable to denial of service DoS attacks. The vulnerability is possible due to the nil panic occurrence in the function 'NewClient' in client.go when accessing an empty debug log allowing an attacker to cause an application crash...

Denial Of Service (DoS)

github.com/micro/go-plugins is vulnerable to denial of service DoS attacks. The vulnerability is possible due to an invalid memory access in 'Leader' function in leader.go allowing an attacker to cause an application crash...

Denial Of Service (DoS)

github.com/containers/image is vulnerable to denial of service DoS. The vulnerability exists because it does not restrict the sizes of blobs copied into memory such as the manifest, the config, signatures, etc, allowing an attacker to hijack registries leading to a big blobs and triggering an out...

Information Leakage Through Denial Of Service (DoS)

github.com/ gammazero/nexus is vulnerable to information leakage through denial of service attacks. The router can reassign call results to the wrong session when two clients are connecting concurrently and performing long running calls with the same request ID, resulting in denial of service...

HTTP Request Smuggling

github.com/kubernetes/ingress-nginx is vulnerable to HTTP request smuggling. The library does not use a named location for authSignURL, allowing a malicious user to read unauthorized web pages in environments where NGINX is being fronted by a load balancer...

Insecure Random Generator

github.com/miekg/dns uses an insecure random generation for transaction IDs. The default Id function uses an insecure math/rand function, resulting in predictable output and allowing an attacker to exploit the vulnerability to forge responses without being on path...

Information Disclosure

github.com/cactus/go-camo is vulnerable to information disclosure through content-type smuggling. The vulnerability exists as it allows malformed content type records to bypass the validation checks, allowing non-media content to be served. This vulnerability can potentially be exploited to perfo...

Symlink Attack

github.com/helm/helm is vulnerable to symlink attack. During loading or packaging of a chart as a directory, a malicious chart containing symlinks could be used to obtain system files such as /etc/passwd. The vulnerability can also be used to cause a denial of service condition when special files...