Github.Com Tiagorlampert Chaos vulnerabilities
3 known vulnerabilities affecting github.com/tiagorlampert_chaos.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
2
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-31839P2MEDIUMExploitedPoC≥ 0, ≤ 5.0.12024-04-12
CVE-2024-31839 [MEDIUM] CWE-79 tiagorlampert CHAOS vulnerable to Cross Site Scripting
tiagorlampert CHAOS vulnerable to Cross Site Scripting
Cross Site Scripting vulnerability in tiagorlampert CHAOS v.5.0.1 allows a remote attacker to escalate privileges via the sendCommandHandler function in the handler.go component.
ghsaosv
CVE-2024-33434P2CRITICALExploited≥ 0, < 0.0.0-20220716132853-b47438d36e3a2024-05-07
CVE-2024-33434 [CRITICAL] CWE-78 tiagorlampert CHAOS vulnerable to arbitrary code execution
tiagorlampert CHAOS vulnerable to arbitrary code execution
An issue in tiagorlampert CHAOS before 1b451cf62582295b7225caf5a7b506f0bad56f6b and 24c9e109b5be34df7b2bce8368eae669c481ed5e allows a remote attacker to execute arbitrary code via the unsafe concatenation of the `filename` argument into the `buildStr` string without any sanitization or filtering.
ghsa
CVE-2024-30850HIGHPoC≥ 0, < 0.0.0-20220716132853-b47438d36e3a2024-04-12
CVE-2024-30850 [HIGH] CWE-78 tiagorlampert CHAOS vulnerable to command injections
tiagorlampert CHAOS vulnerable to command injections
An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
ghsaosv