pkg:Go/github.com/concourse/concourse

4 total CVEsHIGH2MEDIUM2

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2019-3792Pivotal Concourse SQL Injection Vulnerability
    from 0, < 5.0.1
  • HIGH7.5CVE-2020-5415GitLab auth uses full name instead of username as user ID, allowing impersonation
    >= 6.4.0, < 6.4.1
  • MEDIUM5.4CVE-2022-31683Team scope authorization bypass when Post/Put request with :team_name in body, allows HTTP parameter pollution
    from 0, < 6.7.9
  • MEDIUM5.4CVE-2018-15798Pivotal Concourse Open Redirect in Login Flow
    from 0, < 5.2.8