-
Notifications
You must be signed in to change notification settings - Fork 58
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
data/reports: unexclude 20 reports (31)
- data/reports/GO-2022-1219.yaml - data/reports/GO-2022-1220.yaml - data/reports/GO-2022-1225.yaml - data/reports/GO-2022-1235.yaml - data/reports/GO-2022-1236.yaml - data/reports/GO-2022-1239.yaml - data/reports/GO-2022-1240.yaml - data/reports/GO-2022-1243.yaml - data/reports/GO-2022-1244.yaml - data/reports/GO-2022-1245.yaml - data/reports/GO-2022-1248.yaml - data/reports/GO-2022-1250.yaml - data/reports/GO-2022-1251.yaml - data/reports/GO-2022-1252.yaml - data/reports/GO-2022-1253.yaml - data/reports/GO-2022-1256.yaml - data/reports/GO-2022-1257.yaml - data/reports/GO-2022-1259.yaml - data/reports/GO-2022-1260.yaml - data/reports/GO-2022-1261.yaml Updates #1219 Updates #1220 Updates #1225 Updates #1235 Updates #1236 Updates #1239 Updates #1240 Updates #1243 Updates #1244 Updates #1245 Updates #1248 Updates #1250 Updates #1251 Updates #1252 Updates #1253 Updates #1256 Updates #1257 Updates #1259 Updates #1260 Updates #1261 Change-Id: Ica30c989e0f295a3b92b2b355787ffcc1d04dcf4 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/607233 Reviewed-by: Damien Neil <dneil@google.com> Auto-Submit: Tatiana Bradley <tatianabradley@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Commit-Queue: Tatiana Bradley <tatianabradley@google.com>
- Loading branch information
Showing
60 changed files
with
1,546 additions
and
160 deletions.
There are no files selected for viewing
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,56 @@ | ||
{ | ||
"schema_version": "1.3.1", | ||
"id": "GO-2022-1219", | ||
"modified": "0001-01-01T00:00:00Z", | ||
"published": "0001-01-01T00:00:00Z", | ||
"aliases": [ | ||
"CVE-2022-4767", | ||
"GHSA-33m8-f4hw-wm3q" | ||
], | ||
"summary": "usememos/memos Denial of Service vulnerability in github.com/usememos/memos", | ||
"details": "usememos/memos Denial of Service vulnerability in github.com/usememos/memos", | ||
"affected": [ | ||
{ | ||
"package": { | ||
"name": "github.com/usememos/memos", | ||
"ecosystem": "Go" | ||
}, | ||
"ranges": [ | ||
{ | ||
"type": "SEMVER", | ||
"events": [ | ||
{ | ||
"introduced": "0" | ||
}, | ||
{ | ||
"fixed": "0.9.1" | ||
} | ||
] | ||
} | ||
], | ||
"ecosystem_specific": {} | ||
} | ||
], | ||
"references": [ | ||
{ | ||
"type": "ADVISORY", | ||
"url": "https://github.com/advisories/GHSA-33m8-f4hw-wm3q" | ||
}, | ||
{ | ||
"type": "ADVISORY", | ||
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4767" | ||
}, | ||
{ | ||
"type": "FIX", | ||
"url": "https://github.com/usememos/memos/commit/f888c628408501daf639de07b90a72ab443b0f4c" | ||
}, | ||
{ | ||
"type": "WEB", | ||
"url": "https://huntr.dev/bounties/75b4a085-923c-4ecc-bbf6-e049290db502" | ||
} | ||
], | ||
"database_specific": { | ||
"url": "https://pkg.go.dev/vuln/GO-2022-1219", | ||
"review_status": "UNREVIEWED" | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,56 @@ | ||
{ | ||
"schema_version": "1.3.1", | ||
"id": "GO-2022-1220", | ||
"modified": "0001-01-01T00:00:00Z", | ||
"published": "0001-01-01T00:00:00Z", | ||
"aliases": [ | ||
"CVE-2022-4734", | ||
"GHSA-j593-h5v3-45x6" | ||
], | ||
"summary": "usememos/memos may leak user information to an authenticated user in github.com/usememos/memos", | ||
"details": "usememos/memos may leak user information to an authenticated user in github.com/usememos/memos", | ||
"affected": [ | ||
{ | ||
"package": { | ||
"name": "github.com/usememos/memos", | ||
"ecosystem": "Go" | ||
}, | ||
"ranges": [ | ||
{ | ||
"type": "SEMVER", | ||
"events": [ | ||
{ | ||
"introduced": "0" | ||
}, | ||
{ | ||
"fixed": "0.9.1" | ||
} | ||
] | ||
} | ||
], | ||
"ecosystem_specific": {} | ||
} | ||
], | ||
"references": [ | ||
{ | ||
"type": "ADVISORY", | ||
"url": "https://github.com/advisories/GHSA-j593-h5v3-45x6" | ||
}, | ||
{ | ||
"type": "ADVISORY", | ||
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4734" | ||
}, | ||
{ | ||
"type": "FIX", | ||
"url": "https://github.com/usememos/memos/commit/05b41804e33a34102f1f75bb2d69195dda6a1210" | ||
}, | ||
{ | ||
"type": "WEB", | ||
"url": "https://huntr.dev/bounties/4b4421dc-73af-4dec-884c-836f9732cb5b" | ||
} | ||
], | ||
"database_specific": { | ||
"url": "https://pkg.go.dev/vuln/GO-2022-1220", | ||
"review_status": "UNREVIEWED" | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,56 @@ | ||
{ | ||
"schema_version": "1.3.1", | ||
"id": "GO-2022-1225", | ||
"modified": "0001-01-01T00:00:00Z", | ||
"published": "0001-01-01T00:00:00Z", | ||
"aliases": [ | ||
"CVE-2022-4691", | ||
"GHSA-97rc-mm5j-f6rj" | ||
], | ||
"summary": "usememos/memos vulnerable to stored Cross-site Scripting in github.com/usememos/memos", | ||
"details": "usememos/memos vulnerable to stored Cross-site Scripting in github.com/usememos/memos", | ||
"affected": [ | ||
{ | ||
"package": { | ||
"name": "github.com/usememos/memos", | ||
"ecosystem": "Go" | ||
}, | ||
"ranges": [ | ||
{ | ||
"type": "SEMVER", | ||
"events": [ | ||
{ | ||
"introduced": "0" | ||
}, | ||
{ | ||
"fixed": "0.9.0" | ||
} | ||
] | ||
} | ||
], | ||
"ecosystem_specific": {} | ||
} | ||
], | ||
"references": [ | ||
{ | ||
"type": "ADVISORY", | ||
"url": "https://github.com/advisories/GHSA-97rc-mm5j-f6rj" | ||
}, | ||
{ | ||
"type": "ADVISORY", | ||
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4691" | ||
}, | ||
{ | ||
"type": "FIX", | ||
"url": "https://github.com/usememos/memos/commit/c07b4a57caa89905e54b800f4d8fb720bbf5bf82" | ||
}, | ||
{ | ||
"type": "WEB", | ||
"url": "https://huntr.dev/bounties/459b55c1-22f5-4556-9cda-9b86aa91582f" | ||
} | ||
], | ||
"database_specific": { | ||
"url": "https://pkg.go.dev/vuln/GO-2022-1225", | ||
"review_status": "UNREVIEWED" | ||
} | ||
} |
Oops, something went wrong.