Package impact
Go / github.com/concourse/concourse
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-31683 | unknown | — | — | 4y ago | Team scope authorization bypass when Post/Put request with :team_name in body, allows HTTP parameter pollution | |||
| CVE-2018-15798 | unknown | — | — | 4y ago | Pivotal Concourse Open Redirect in Login Flow | |||
| CVE-2019-3792 | unknown | — | — | 4y ago | Pivotal Concourse SQL Injection Vulnerability | |||
| CVE-2020-5415 | unknown | — | — | 5y ago | GitLab auth uses full name instead of username as user ID, allowing impersonation |