pkg:Go/github.com/dagu-org/dagu

6 total CVEsCRITICAL2HIGH2

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.1CVE-2026-31886Dagu: Path Traversal via `dagRunId` in Inline DAG Execution
    from 0, <= 2.2.4
  • CRITICAL9.1CVE-2026-31886Dagu: Path Traversal via `dagRunId` in Inline DAG Execution
    from 0
  • HIGH8.1CVE-2026-33344Dagu has an incomplete fix for CVE-2026-27598: path traversal via %2F-encoded slashes in locateDAG
    >= 1.30.4-0.20260221021317-e2ed589105d7, < 1.30.4-0.20260319093346-7d07fda8f9de
  • HIGH8.1CVE-2026-33344Dagu has an incomplete fix for CVE-2026-27598: path traversal via %2F-encoded slashes in locateDAG
    >= 1.30.4-0.20260221021317-e2ed589105d7, < 1.30.4-0.20260319093346-7d07fda8f9de
  • CVE-2026-27598Dagu: Path traversal in DAG creation allows arbitrary YAML file write outside DAGs directory
    from 0, <= 1.16.7
  • CVE-2026-27598Dagu: Path traversal in DAG creation allows arbitrary YAML file write outside DAGs directory
    from 0