Cross-site Request Forgery (CSRF)

github.com/coreos/etcd is vulnerable to cross-site request forgery CSRF attacks. The vulnerability exists as there are no host whitelists in place to prevent unauthorized websites from sending unauthorized POST requests to the etcd server...

DNS Rebinding

github.com/coreos/etcd is vulnerable to DNS rebinding. The vulnerability exists because it does not prevent the attacker to use its DNS records to direct to localhost, and trick the browser into sending requests to localhost or any other address...

Information Disclosure

github.com/ory/fosite is vulnerable to information disclosure. The vulnerability exists as the request body may contain client secrets to be exposed when POST-body based client authentication is enabled...

Arbitrary Code Execution

github.com/golang/go is vulnerable to arbitrary code execution attacks. The application does not filter the compiler flag variables -fplugin= and -plugin= when the go get command is run, allowing a malicious user to inject and execute arbitrary code by loading compiler plugins...

Access Restriction Bypass

github.com/snapcore/snapd is vulnerable to access restriction bypass. The match arguments are not made when the snap logs command is made from a call to journalctl allowing attackers to bypass systemd-journald's access restrictions...

Directory Traversal

github.com/astaxie/beego is vulnerable to directory traversal attacks. The library does not properly sanitize URL paths, allowing a malicious user to gain access to sensitive information...

POODLE Attack

crypto/tls in github.com/golang/go is vulnerable to the POODLE attack. The vulnerability exists due to the default SSLv3 fallback configuration in crypto/tls...

Infinite Redirection Loop

github.com/golang/gddo is vulnerable to infinite redirection loop. The weakness exist as TLS is removed before reaching gddo-server, causing an infinite loop that redirects to https...

Cross-site Scripting (XSS)

github.com/koding/koding is vulnerable to cross-site scripting XSS attacks. A malicious user can inject and execute arbitrary Javascript through the status bar filepath variable...

Cross-site Scripting (XSS)

github.com/microcosm-cc/bluemonday is vulnerable to Cross-Site Scripting XSS attacks. The vulnerability exists due to the use of strings.toLower which converts the symbol \u0130 İ to i...

Privilege Escalation

github.com/juju/juju is vulnerable to privilege escalation. A malicious user with access to the terminal can gain root privileges through the command juju-run 'whoami'...

Unauthorized Access

github.com/moby/moby is vulnerable to unauthorized access. A malicious user can write scsi remove-single-device to /proc/scsi/scsi, removing a scsi device from the system...

Denial Of Service (DoS) Through Integer Overflow

github.com/tendermint/go-wire is vulnerable to denial of service DoS attacks. The library does not ensure the input to be encoded is less than the maximum integer value accepted, allowing a malicious user to cause an integer overflow that crashes the application...

Man-in-the-Middle (MitM)

github.com/golang/go is vulnerable to man-in-the-middle MitM attack. A malicious user can set up a MitM SMTP server that doesn't advertise STARTTLS and advertises that PLAIN authentication can be used. By doing this, smtp.PlainAuth will send the username and password will be sent to the server...

Untrusted Certificate Validation

crypto/x509 in github.com/golang/go uses untrusted certificates for validation. When used on Darwin, golang will use an untrusted root certificate as if it were trusted when verifying connections...

Man In The Middle (MitM)

github.com/remind101/empire is vulnerable to Man in the Middle MitM attacks. The library pulls Docker images using a tag. Pulling a Docker image doesn't guarantee the pull data hasn't been modified, the usage of the content-addressable identifier guarantees the Empire API will safely pull the...

Cleaning up my GOPATH with Homebrew

tl;dr: use the script at the bottom to go get into the Homebrew "Cellar" and keep your GOPATH clean. I personally like GOPATH and import paths, but while trying to reduce my laptop to a thin reproducible client, I felt the pain of keeping track of the hundreds of repositories that end up in there...

Missing Certificate Request Signature Validation

crypto/x509 in github.com/golang/go is missing certificate request signature validation. The library does not check the binding of the private key i.e., signature validation to its corresponding entities' certificate...

Cross-site Scripting (XSS)

github.com/gogits/gogs is vulnerable to cross-site scripting XSS attacks. The attacks can be triggered because a user can change their username to anything other than an empty string. This allows them to enter code which may be executed...

Cross-site Scripting (XSS)

github.com/gogits/gogs is vulnerable to cross-site scripting XSS attacks. The library's wiki templates do not sanitize user input, allowing a malicious user to inject and execute arbitrary code...