Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/akuity/kargo

go

View on github.com · View on proxy.golang.org

Security Advisories for github.com/akuity/kargo in go

Moderate
3 months ago

Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration GSA_kwCzR0hTQS1qOTR4LTh3Y3AteDdobc4ABTvA

go github.com/akuity/kargo
Critical
3 months ago

Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints GSA_kwCzR0hTQS03Zzl4LWNwOWctOTJtcs4ABShl

go github.com/akuity/kargo
Moderate
3 months ago

Kargo has Missing Authorization Vulnerabilities in Approval & Promotion REST API Endpoints GSA_kwCzR0hTQS01dnZtLTY3cGotNzJnNM4ABShk

go github.com/akuity/kargo
Moderate
4 months ago

Kargo's `GetConfig()` and `RefreshResource()` API endpoints allow unauthenticated access GSA_kwCzR0hTQS13NXd2LXd2cnAtdjVtNc4ABRo-

go github.com/akuity/kargo

Filter by Severity

Moderate 3 Critical 1