pkg:Go/github.com/lin-snow/ech0

4 total CVEsHIGH2MEDIUM2

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-35036Ech0 has Unauthenticated Server-Side Request Forgery in Website Preview Feature
    from 0, < 1.4.8-0.20260401031029-4ca56fea5ba4
  • HIGH7.2CVE-2026-35037Ech0: Unauthenticated SSRF in GetWebsiteTitle allows access to internal services and cloud metadata
    from 0, < 1.4.8-0.20260401031029-4ca56fea5ba4
  • MEDIUM5.3CVE-2026-33638Ech0 authenticated user-list exposed data via public `/api/allusers` endpoint
    from 0, < 1.4.8-0.20260322121226-acbf1fd71011
  • MEDIUM5.3CVE-2026-33638Ech0 authenticated user-list exposed data via public `/api/allusers` endpoint
    from 0, < 1.4.8-0.20260322121226-acbf1fd71011