5 matches found
GO-2024-3306 Vitess allows HTML injection in /debug/querylogz and /debug/env in vitess.io/vitess
Vitess allows HTML injection in /debug/querylogz and /debug/env in vitess.io/vitess...
CVE-2024-55565 vulnerabilities
Vulnerabilities for packages: vitess, kibana, jitsucom-jitsu...
GHSA-GCX4-MW62-G8WM vulnerabilities
Vulnerabilities for packages: vite, vitess...
CVE-2023-43646 vulnerabilities
Vulnerabilities for packages: vitess...
PT-2023-22194 · Vitess +2 · Vitess +2
Name of the Vulnerable Software and Affected Versions: Vitess versions prior to 16.0.2 Description: The issue allows users to create a shard containing / characters from VTAdmin, which can cause errors when trying to create new shards or view keyspaces. Creating a shard using vtctldclient does no...