Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/amir20/dozzle

go

View on github.com · View on proxy.golang.org

Security Advisories for github.com/amir20/dozzle in go

High
about 1 month ago

Dozzle: Pre-auth SSRF with response-body reflection via POST /api/notifications/test-webhook (default no-auth deploy) GSA_kwCzR0hTQS0zdjl3LTYzNjUtOXc1NM4ABXBE

go github.com/amir20/dozzle
High
about 1 month ago

Dozzle's Cross-Site WebSocket Hijacking (CSWSH) on exec/attach endpointsbypasses authentication GSA_kwCzR0hTQS1qNjQzLXg4cHYtOG02N84ABWjw

go github.com/amir20/dozzle
High
5 months ago

Dozzle Agent Label-Based Access Control Bypass Allows Unauthorized Container Shell Access GSA_kwCzR0hTQS1tODU1LXI1NTctNXJjNc4ABRlt

go github.com/amir20/dozzle
Low
over 1 year ago

Dozzle uses unsafe hash for passwords GSA_kwCzR0hTQS13N3FyLXE5ZmgtZmozNc4ABAJK

go github.com/amir20/dozzle

Filter by Severity

High 3 Low 1