Package impact
Go / github.com/influxdata/influxdb
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-17572 | unknown | — | — | 4y ago | InfluxDB 0.9.5 has Reflected XSS in the Write Data module. | |||
| CVE-2019-20933 | unknown | — | — | 5y ago | InfluxDB before 1.7.6 has an authentication bypass vulnerability in the authenticate function in services/httpd/handler.go because a JWT token may have an empty SharedSecret (aka shared secret). |