Labstack Echo versions prior to 4.9.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery (SSRF).
HIGH Vulnerable Package issue exists @ github.com/labstack/echo in branch master
Description
Labstack Echo versions prior to 4.9.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery (SSRF).
HIGH Vulnerable Package issue exists @ github.com/labstack/echo in branch master
Vulnerability ID: CVE-2022-40083
Package Name: github.com/labstack/echo
Severity: HIGH
CVSS Score: 9.6
Publish Date: 2022-09-28T14:15:00
Current Package Version: v3.3.10
Remediation Upgrade Recommendation: 4.1.16
Link To SCA
Reference – NVD link