Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
H Insufficient Session Expiration	github.com/coder/coder/v2/coderd/database/dbmetrics>=2.22.0 <2.24.4>=2.25.0 <2.25.2	Go	7 Sept 2025
H Insufficient Session Expiration	github.com/coder/coder/v2/coderd/database/dbgen>=2.22.0 <2.24.4>=2.25.0 <2.25.2	Go	7 Sept 2025
H Insufficient Session Expiration	github.com/coder/coder/v2/coderd/database/dbauthz>=2.22.0 <2.24.4>=2.25.0 <2.25.2	Go	7 Sept 2025
H Insufficient Session Expiration	github.com/coder/coder/v2/coderd>=2.22.0 <2.24.4>=2.25.0 <2.25.2	Go	7 Sept 2025
H Directory Traversal	github.com/containers/podman/v4/pkg/domain/infra/abi<4.2.0	Go	5 Sept 2025
H Directory Traversal	github.com/containers/podman/v3/pkg/domain/infra/abi*	Go	5 Sept 2025
H Directory Traversal	github.com/containers/podman/v2/pkg/domain/infra/abi*	Go	5 Sept 2025
H Directory Traversal	github.com/containers/podman/v5/pkg/domain/infra/abi<5.6.1	Go	5 Sept 2025
M Exposure of Sensitive System Information to an Unauthorized Control Sphere	github.com/argoproj/argo-cd/v3/server/project>=2.13.0 <2.13.9>=2.14.0-rc1 <2.14.16>=3.0.0-rc1 <3.0.14>=3.1.0-rc1 <3.1.2	Go	5 Sept 2025
M Exposure of Sensitive System Information to an Unauthorized Control Sphere	github.com/argoproj/argo-cd/v3/server/cluster>=2.13.0 <2.13.9>=2.14.0-rc1 <2.14.16>=3.0.0-rc1 <3.0.14>=3.1.0-rc1 <3.1.2	Go	5 Sept 2025
M Exposure of Sensitive System Information to an Unauthorized Control Sphere	github.com/argoproj/argo-cd/v3/pkg/apis/application/v1alpha1>=2.13.0 <2.13.9>=2.14.0-rc1 <2.14.16>=3.0.0-rc1 <3.0.14>=3.1.0-rc1 <3.1.2	Go	5 Sept 2025
M Directory Traversal	github.com/usememos/memos/server/router/api/v1>=0.22.0	Go	5 Sept 2025
M Cross-site Scripting (XSS)	github.com/usememos/memos/server/router/api/v1>=0.22.0	Go	5 Sept 2025
H Arbitrary Argument Injection	github.com/charmbracelet/soft-serve/pkg/ssh/cmd<0.9.2	Go	5 Sept 2025
M Exposure of Sensitive System Information to an Unauthorized Control Sphere	github.com/argoproj/argo-cd/server/project>=2.13.0 <2.13.9>=2.14.0-rc1 <2.14.16>=3.0.0-rc1 <3.0.14>=3.1.0-rc1 <3.1.2	Go	5 Sept 2025
M Exposure of Sensitive System Information to an Unauthorized Control Sphere	github.com/argoproj/argo-cd/server/cluster>=2.13.0 <2.13.9>=2.14.0-rc1 <2.14.16>=3.0.0-rc1 <3.0.14>=3.1.0-rc1 <3.1.2	Go	5 Sept 2025
M Exposure of Sensitive System Information to an Unauthorized Control Sphere	github.com/argoproj/argo-cd/pkg/apis/application/v1alpha1>=2.13.0 <2.13.9>=2.14.0-rc1 <2.14.16>=3.0.0-rc1 <3.0.14>=3.1.0-rc1 <3.1.2	Go	5 Sept 2025
M Insertion of Sensitive Information into Log File	sigs.k8s.io/secrets-store-sync-controller/internal/controller<0.0.2	Go	5 Sept 2025
M Insertion of Sensitive Information into Log File	github.com/kubernetes-sigs/secrets-store-sync-controller/internal/controller<0.0.2	Go	5 Sept 2025
M Insertion of Sensitive Information into Log File	sigs.k8s.io/secrets-store-sync-controller/internal/controller<0.0.2	Go	5 Sept 2025
H Improper Neutralization	github.com/openbao/openbao/builtin/credential/radius<2.3.2	Go	4 Sept 2025
M Improper Authorization	github.com/litmuschaos/litmus/chaoscenter/authentication/api/handlers/rest>=0.0.0	Go	2 Sept 2025
C Use of Hard-coded Cryptographic Key	github.com/coze-dev/coze-studio/backend/domain/plugin/utils<0.2.2	Go	2 Sept 2025
H Denial of Service (DoS)	github.com/vllm-project/aibrix/pkg/cache<0.2.0-rc.2	Go	1 Sept 2025
M Directory Traversal	github.com/lostvip-com/ruoyi-go/modules/system/controller>=0.0.0	Go	1 Sept 2025
M SQL Injection	github.com/lostvip-com/ruoyi-go/modules/system/service>=0.0.0	Go	1 Sept 2025
M SQL Injection	github.com/lostvip-com/ruoyi-go/modules/system/dao>=0.0.0	Go	1 Sept 2025
M SQL Injection	github.com/lostvip-com/ruoyi-go/modules/system/dao>=0.0.0	Go	1 Sept 2025
M SQL Injection	github.com/lostvip-com/ruoyi-go/modules/system/dao>=0.0.0	Go	1 Sept 2025
H Cross-site Request Forgery (CSRF)	github.com/gorilla/csrf>=1.7.3	Go	31 Aug 2025

APPLICATION

OPERATING SYSTEM