Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/enchant97/note-mark/backend

go

View on github.com · View on proxy.golang.org

Security Advisories for github.com/enchant97/note-mark/backend in go

Critical
24 days ago

Note Mark has a JWT Secret Weakness that allows Full Account Takeover via Token Forgery GSA_kwCzR0hTQS1xNm1oLXJxd2gtZzc4Ns4ABWZw

go github.com/enchant97/note-mark/backend
High
24 days ago

Note Mark: Arbitrary File Write via Path Traversal in Asset Names Leads to Remote Code Execution GSA_kwCzR0hTQS1nNDlwLTRxeGotODh2M84ABWZv

go github.com/enchant97/note-mark/backend
Moderate
about 1 month ago

Note Mark: Unauthenticated read of notes and assets in soft-deleted public books GSA_kwCzR0hTQS0zZ3I5LTQ4NWotdjR4Zs4ABVyB

go github.com/enchant97/note-mark/backend
Critical
about 1 month ago

Note Mark: OIDC-registered users authenticated by submitting password "null" GSA_kwCzR0hTQS1weGY4LTZ3cW0tcjZoaM4ABVyA

go github.com/enchant97/note-mark/backend
Moderate
about 2 months ago

Note Mark has Broken Access Control on Asset Download GSA_kwCzR0hTQS1wNXc2LTc1ZjktY2MycM4ABVLz

go github.com/enchant97/note-mark/backend
Low
about 2 months ago

Note Mark: Username Enumeration via Login Endpoint Timing Side-Channel GSA_kwCzR0hTQS13Nm05LTM5Y3YtMmZ3cM4ABVLy

go github.com/enchant97/note-mark/backend
High
about 2 months ago

Note Mark has Stored XSS via Unrestricted Asset Upload GSA_kwCzR0hTQS05cHI0LXJmOTctNzlxaM4ABVLx

go github.com/enchant97/note-mark/backend

Filter by Severity

Moderate 2 High 2 Critical 2 Low 1