pkg:Go/github.com/KubeOperator/kubepi

All known vulnerabilities

• CRITICAL9.8CVE-2023-22463KubePi allows malicious actor to login with a forged JWT token via Hardcoded Jwtsigkeys in github.com/KubeOperator/kubepi
  from 0, < 1.6.3
• CRITICAL9.8CVE-2023-22463KubePi allows malicious actor to login with a forged JWT token via Hardcoded Jwtsigkeys in github.com/KubeOperator/kubepi
  from 0, < 1.6.3
• CRITICAL9.1CVE-2023-37917KubePi Privilege Escalation vulnerability in github.com/KubeOperator/kubepi
  from 0, < 1.6.5
• CRITICAL9.1CVE-2023-37917KubePi Privilege Escalation vulnerability in github.com/KubeOperator/kubepi
  from 0, < 1.6.5
• HIGH7.5CVE-2023-22479KubePi session fixation attack allows an attacker to hijack a legitimate user session. in github.com/KubeOperator/kubepi
  from 0, < 1.6.4
• HIGH7.5CVE-2023-22479KubePi session fixation attack allows an attacker to hijack a legitimate user session. in github.com/KubeOperator/kubepi
  from 0, < 1.6.4
• HIGH7.5CVE-2023-22478KubePi may allow unauthorized access to system API in github.com/KubeOperator/kubepi
  from 0, < 1.6.4
• HIGH7.5CVE-2023-22478KubePi may allow unauthorized access to system API in github.com/KubeOperator/kubepi
  from 0, < 1.6.4
• MEDIUM6.5CVE-2023-37916KubePi may leak password hash of any user in github.com/KubeOperator/kubepi
  from 0, < 1.6.5
• MEDIUM6.5CVE-2023-37916KubePi may leak password hash of any user in github.com/KubeOperator/kubepi
  from 0, < 1.6.5