Lucene search
K

25 matches found

Nuclei
Nuclei
added 15 hours ago39 views

Labstack Echo 4.8.0 - Open Redirect

Labstack Echo 4.8.0 contains an open redirect vulnerability via the Static Handler component. An attacker can leverage this vulnerability to cause server-side request forgery, making it possible to obtain sensitive information, modify data, and/or execute unauthorized operations. id: CVE-2022-400...

9.6CVSS7.2AI score0.02309EPSS
Exploits1References5
OSV
OSV
added 2026/02/26 4:27 p.m.5 views

GO-2026-4502 Echo has a Windows path traversal via backslash in middleware.Static default filesystem in github.com/labstack/echo/v5

Echo has a Windows path traversal via backslash in middleware.Static default filesystem in github.com/labstack/echo/v5...

5.3CVSS5.5AI score0.00329EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 11:37 p.m.4 views

CVE-2022-40083

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF...

9.6CVSS9.2AI score0.02309EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2022-40083

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers...

9.6CVSS7.3AI score0.02309EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2022/12/07 5:15 p.m.28 views

CVE-2020-36565

Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read...

5.3CVSS6.1AI score0.01335EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/12/07 4:14 p.m.16 views

CVE-2020-36565 Directory traversal on Windows in github.com/labstack/echo/v4

Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read...

5.1AI score0.01335EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/12/07 12:0 a.m.2 views

labstack echo 路径遍历漏洞

labstack echo is the high-performance, minimalist Go Web framework. A security vulnerability exists in the previous version of labstack echo v4.1.18-0.20201215153152-4422e3b66b9f, which stems from incorrect cleanup of user input on Windows, where the static file handler allows for directory...

5.3CVSS5.7AI score0.01335EPSS
Exploits1References4
OSV
OSV
added 2022/10/11 9:29 p.m.23 views

GO-2022-1031 Open redirect in github.com/labstack/echo/v4

Labstack Echo contains an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF...

9.6CVSS9.1AI score0.02309EPSS
Exploits1References2
Veracode
Veracode
added 2022/10/03 3:18 a.m.18 views

Server-Side Request Forgery (SSRF)

github.com/labstack/echo is vulnerable to server side request forgery. The vulnerability exists due to a lack of sanitization of URL via the Static Handler component allowing an attacker to redirect a user to a malicious website...

9.6CVSS8.7AI score0.02309EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2022/09/30 12:0 a.m.48 views

LabStack Echo Open Redirect Vulnerability

LabStack echo is a high-performance, minimalist Go web framework open sourced by LabStack LLC. labStack Echo v4.8.0 version has an open redirection vulnerability that can be exploited by attackers to launch server-side request forgery attacks...

3.6AI score0.02309EPSS
Exploits1Affected Software1
OSV
OSV
added 2022/09/29 12:0 a.m.22 views

GHSA-CRXJ-HRMP-4RWF Labstack Echo Open Redirect vulnerability

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF. Version 4.9.0 contains a patch for the issue...

9.6CVSS9.2AI score0.02309EPSS
Exploits1References8
Github Security Blog
Github Security Blog
added 2022/09/29 12:0 a.m.99 views

Labstack Echo Open Redirect vulnerability

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF. Version 4.9.0 contains a patch for the issue...

9.6CVSS8.9AI score0.02309EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2022/09/28 2:15 p.m.22 views

CVE-2022-40083

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF...

9.6CVSS0.02309EPSS
Exploits1References1
OSV
OSV
added 2022/09/28 2:15 p.m.6 views

DEBIAN-CVE-2022-40083

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF...

9.6CVSS8.4AI score0.02309EPSS
Exploits1References1
OSV
OSV
added 2022/09/28 2:15 p.m.18 views

CVE-2022-40083

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF...

9.6CVSS9.3AI score
Exploits0References1
Prion
Prion
added 2022/09/28 2:15 p.m.25 views

Open redirect

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF...

6.8CVSS9.1AI score0.02309EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2022/09/28 2:15 p.m.38 views

CVE-2022-40083

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF...

9.6CVSS7.2AI score0.02309EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2022/09/28 1:34 p.m.11 views

CVE-2022-40083

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF...

9.6CVSS9.3AI score0.02309EPSS
Exploits1
CVE
CVE
added 2022/09/28 1:34 p.m.113 views

CVE-2022-40083

Labstack Echo v4.8.0 contains an open redirect vulnerability via the Static Handler component that can be exploited to cause Server-Side Request Forgery (SSRF). Affected software: Labstack Echo 4.8.0. Root cause: open redirect in Static Handler allows redirection to arbitrary URLs, enabling SSRF....

9.6CVSS9.1AI score0.02309EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/09/28 1:34 p.m.223 views

CVE-2022-40083

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery SSRF...

9.5AI score0.02309EPSS
Exploits1References1
Rows per page
Query Builder