Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
H Operation on a Resource after Expiration or Release	github.com/zitadel/zitadel/internal/api/grpc/user <2.54.10 >=2.55.0 <2.55.8 >=2.56.0 <2.56.6 >=2.57.0 <2.57.5 >=2.58.0 <2.58.5 >=2.59.0 <2.59.3 >=2.60.0 <2.60.2 >=2.61.0 <2.61.1 >=2.62.0 <2.62.1	Go	30 Sep 2024
H Operation on a Resource after Expiration or Release	github.com/zitadel/zitadel/internal/api/grpc/auth <2.54.10 >=2.55.0 <2.55.8 >=2.56.0 <2.56.6 >=2.57.0 <2.57.5 >=2.58.0 <2.58.5 >=2.59.0 <2.59.3 >=2.60.0 <2.60.2 >=2.61.0 <2.61.1 >=2.62.0 <2.62.1	Go	30 Sep 2024
H Infinite Loop	github.com/wcharczuk/go-chart/v2 <2.1.2	Go	29 Sep 2024
H Arbitrary Code Injection	github.com/mudler/localai/pkg/model <2.18.0	Go	29 Sep 2024
M Access Control Bypass	github.com/mattermost/mattermost/server/channels/store/sqlstore >=9.5.0 <9.5.9 >=9.9.0 <9.9.3 >=9.10.0 <9.10.2	Go	29 Sep 2024
L Server-Side Request Forgery (SSRF)	github.com/mattermost/mattermost/server/public/shared/httpservice >=9.5.0 <9.5.9-rc1	Go	29 Sep 2024
M Improper Isolation or Compartmentalization	github.com/grafana/grafana/pkg/services/ngalert/api <10.3.10 >=10.4.0 <10.4.9 >=11.0.0 <11.0.5 >=11.1.0 <11.1.6 >=11.2.0 <11.2.1	Go	29 Sep 2024
M Use of Weak Hash	github.com/amir20/dozzle/internal/auth <8.5.3	Go	29 Sep 2024
M Improper Access Control	github.com/mattermost/mattermost/server/channels/api4/ >=9.5.0 <9.5.9 >=9.9.0 <9.9.3 >=9.10.0 <9.10.2 >=9.11.0 <9.11.1	Go	29 Sep 2024
L Improper Access Control	github.com/mattermost/mattermost/server/channels/api4/ >=9.5.0 <9.5.9	Go	29 Sep 2024
L Improper Access Control	github.com/mattermost/mattermost/server/channels/app >=9.5.0 <9.5.9	Go	29 Sep 2024
M Improper Check for Unusual or Exceptional Conditions	github.com/mattermost/mattermost/server/channels/app >=9.5.0-rc1 <9.5.9-rc1 >=9.11.0-rc1 <9.11.1-rc1	Go	29 Sep 2024
M Improper Check for Unusual or Exceptional Conditions	github.com/mattermost/mattermost/server/public/model >=9.5.0-rc1 <9.5.9-rc1 >=9.11.0-rc1 <9.11.1-rc1	Go	29 Sep 2024
H Authentication Bypass	github.com/rancher/rancher/pkg/settings >=2.7.0 <2.7.15 >=2.8.0 <2.8.8 >=2.9.0 <2.9.2	Go	27 Sep 2024
H Incorrect Permission Assignment for Critical Resource	github.com/hashicorp/vault/builtin/logical/ssh >=1.7.7 <1.17.6	Go	27 Sep 2024
M Improper Masking of Secrets in Logs	github.com/microsoft/terraform-provider-power-platform/internal/powerplatform/helpers <3.0.0	Go	26 Sep 2024
M Improper Masking of Secrets in Logs	github.com/microsoft/terraform-provider-power-platform/internal/powerplatform/config <3.0.0	Go	26 Sep 2024
M Improper Masking of Secrets in Logs	github.com/microsoft/terraform-provider-power-platform/internal/powerplatform/api <3.0.0	Go	26 Sep 2024
M Improper Masking of Secrets in Logs	github.com/microsoft/terraform-provider-power-platform/internal/powerplatform <3.0.0	Go	26 Sep 2024
C Authentication Bypass by Spoofing	mellium.im/xmpp <0.22.0	Go	25 Sep 2024
C Authentication Bypass by Spoofing	github.com/mellium/xmpp >=0.0.0	Go	25 Sep 2024
C SQL Injection	github.com/navidrome/navidrome/model <0.53.0	Go	22 Sep 2024
C SQL Injection	github.com/navidrome/navidrome/persistence <0.53.0	Go	22 Sep 2024
H Operation on a Resource after Expiration or Release	github.com/zitadel/zitadel/internal/api/saml *	Go	20 Sep 2024
H Operation on a Resource after Expiration or Release	github.com/zitadel/zitadel/internal/command *	Go	20 Sep 2024
H Operation on a Resource after Expiration or Release	github.com/zitadel/zitadel/internal/integration *	Go	20 Sep 2024
H Operation on a Resource after Expiration or Release	github.com/zitadel/zitadel/internal/api/oidc *	Go	20 Sep 2024
C Use of Hard-coded Cryptographic Key	d7y.io/dragonfly/v2/manager/router <2.1.0-beta.1	Go	20 Sep 2024
C Use of Hard-coded Cryptographic Key	d7y.io/dragonfly/v2/manager/middlewares <2.1.0-beta.1	Go	20 Sep 2024
C Use of Hard-coded Cryptographic Key	d7y.io/dragonfly/v2/manager/config <2.1.0-beta.1	Go	20 Sep 2024

APPLICATION

OPERATING SYSTEM