Affected by GO-2024-2637
and 10 other vulnerabilities
GO-2024-2637 : Account Takeover via Session Fixation in Zitadel [Bypassing MFA] in github.com/zitadel/zitadel
GO-2024-2664 : ZITADEL's actions can overload reserved claims in github.com/zitadel/zitadel
GO-2024-2665 : ZITADEL's Improper Content-Type Validation Leads to Account Takeover via Stored XSS + CSP Bypass in github.com/zitadel/zitadel
GO-2024-2788 : ZITADEL's Improper Lockout Mechanism Leads to MFA Bypass in github.com/zitadel/zitadel
GO-2024-2804 : Zitadel exposing internal database user name and host information in github.com/zitadel/zitadel
GO-2024-2968 : ZITADEL Vulnerable to Session Information Leakage in github.com/zitadel/zitadel
GO-2024-3014 : ZITADEL "ignoring unknown usernames" vulnerability in github.com/zitadel/zitadel
GO-2024-3015 : ZITADEL has improper HTML sanitization in emails and Console UI in github.com/zitadel/zitadel
GO-2024-3137 : ZITADEL's User Grant Deactivation not Working in github.com/zitadel/zitadel
GO-2024-3138 : ZITADEL Allows Unauthorized Access After Organization or Project Deactivation in github.com/zitadel/zitadel
GO-2024-3139 : ZITADEL's Service Users Deactivation not Working in github.com/zitadel/zitadel
Discover Packages
github.com/zitadel/zitadel
internal
notification
senders
package
Version:
v1.87.3
Opens a new window with list of versions in this module.
Published: Oct 19, 2022
License: Apache-2.0
Opens a new window with license information.
Imports: 7
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
Documentation
¶
HandleMessage returns a non nil error from a provider immediately if any occurs
messages are sent to channels in the same order they were provided to chainChannels()
Source Files
¶
Click to show internal directories.
Click to hide internal directories.