Security Advisories for github.com/pterodactyl/wings in go
High
3 months ago
Pterodactyl Panel's SFTP sessions remain active after user account deletion or password change
go, packagist
github.com/pterodactyl/wings, pterodactyl/panel
High
4 months ago
Pterodactyl endlessly reprocesses/reuploads activity log data due to SQLite max parameters limit not being considered
go
github.com/pterodactyl/wings
High
4 months ago
Pterodactyl websocket endpoints have no visible rate limits or monitoring, allowing for DOS attacks
go
github.com/pterodactyl/wings
High
5 months ago
Pterodactyl does not revoke SFTP access when server is deleted or permissions reduced
go, packagist
github.com/pterodactyl/wings, pterodactyl/panel
Moderate
about 2 years ago
Pterodactyl Wings vulnerable to Server-Side Request Forgery during remote file pull
go
github.com/pterodactyl/wings
High
about 2 years ago
Pterodactyl Wings vulnerable to Arbitrary File Write/Read
go
github.com/pterodactyl/wings
Critical
about 2 years ago
Pterodactyl Wings vulnerable to improper isolation of server file access
go
github.com/pterodactyl/wings
Critical
about 3 years ago
Wings vulnerable to escape to host from installation container
go
github.com/pterodactyl/wings
Critical
over 3 years ago
Pterodactyl Wings contains UNIX Symbolic Link (Symlink) Following resulting in deletion of files and directories on the host system
go
github.com/pterodactyl/wings
High
over 3 years ago
Pterodactyl Wings contains UNIX Symbolic Link (Symlink) Following
go
github.com/pterodactyl/wings
Moderate
almost 5 years ago
Unchecked hostname resolution could allow access to local network resources by users outside the local network
go
github.com/pterodactyl/wings
Moderate
almost 5 years ago
Asymmetric Resource Consumption (Amplification) in Docker containers created by Wings
go
github.com/pterodactyl/wings