Affected by GO-2023-1283
and 4 other vulnerabilities
GO-2023-1283: KubePi allows malicious actor to login with a forged JWT token via Hardcoded Jwtsigkeys in github.com/KubeOperator/kubepi
GO-2023-1463: KubePi may allow unauthorized access to system API in github.com/KubeOperator/kubepi
GO-2023-1468: KubePi session fixation attack allows an attacker to hijack a legitimate user session. in github.com/KubeOperator/kubepi
GO-2023-1956: KubePi Privilege Escalation vulnerability in github.com/KubeOperator/kubepi
GO-2023-1957: KubePi may leak password hash of any user in github.com/KubeOperator/kubepi
directory
Version:
v1.1.2
Opens a new window with list of versions in this module.
Published: Oct 29, 2021
License: Apache-2.0
Opens a new window with license information.
Click to show internal directories.
Click to hide internal directories.