github-actions[bot]
commented
3 months ago Issue still exists.
Open github-actions[bot] opened 3 months ago
github-actions[bot]
commented
3 months ago Issue still exists.
Description
Labstack Echo versions prior to 4.9.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery (SSRF).
HIGH Vulnerable Package issue exists @ github.com/labstack/echo/v4 in branch master
Vulnerability ID: CVE-2022-40083
Package Name: github.com/labstack/echo/v4
Severity: HIGH
CVSS Score: 9.6
Publish Date: 2022-09-28T14:15:00
Current Package Version: v4.1.17
Remediation Upgrade Recommendation: v4.6.2-0.20211217124917-6b5e62b27ea0
Link To SCA
Reference – NVD link