Vulnerabilidades em patrickhener
13 resultadosCVE-2026-35392CRITICALgoshs has an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs PUT UploadEPSS 0.7%CVE-2026-35393CRITICALImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs POST multipart uploadEPSS 0.7%CVE-2026-35471CRITICALImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshsEPSS 0.7%CVE-2026-40189CRITICALgoshs has a file-based ACL authorization bypass in goshs state-changing routesEPSS 0.7%CVE-2025-46816CRITICALgoshs route not protected, allows command executionEPSS 0.6%CVE-2026-40884CRITICALgoshs: Empty-username SFTP password authentication bypass in goshsEPSS 0.5%CVE-2026-40876HIGHSFTP root escape via prefix-based path validation in goshsEPSS 0.4%CVE-2026-34581HIGHgoshs has Auth Bypass via Share TokenEPSS 0.4%CVE-2026-40188HIGHgoshs is Missing Write Protection for Parametric Data ValuesEPSS 0.3%CVE-2026-40885HIGHgoshs: Public collaborator feed leaks .goshs ACL credentials and enables unauthorized accessEPSS 0.3%CVE-2026-40903CRITICALGoshs - ArtiPACKED Vulnerability – GitHub Actions Credential PersistenceEPSS 0.2%CVE-2026-42091MEDIUMgoshs has Cross-Origin Arbitrary File Write via Missing CSRF on PUT and Wildcard CORSEPSS 0.2%CVE-2026-40883MEDIUMgoshs: CSRF in state-changing GET routes enables authenticated file deletion and directory creationEPSS 0.1%