goshs

Top products

The 12 most recently published vulnerabilities affecting goshs.

• CVE-2026-42091goshs has Cross-Origin Arbitrary File Write via Missing CSRF on PUT and Wildcard CORS6.5May 4, 2026
• CVE-2026-40903Goshs - ArtiPACKED Vulnerability – GitHub Actions Credential Persistence9.1Apr 21, 2026
• CVE-2026-40885goshs: Public collaborator feed leaks .goshs ACL credentials and enables unauthorized access8.8Apr 21, 2026
• CVE-2026-40884goshs: Empty-username SFTP password authentication bypass in goshs9.8Apr 21, 2026
• CVE-2026-40883goshs: CSRF in state-changing GET routes enables authenticated file deletion and directory creation8.1Apr 21, 2026
• CVE-2026-40876SFTP root escape via prefix-based path validation in goshs8.8Apr 21, 2026
• CVE-2026-40189goshs has a file-based ACL authorization bypass in goshs state-changing routes9.8Apr 10, 2026
• CVE-2026-40188goshs is Missing Write Protection for Parametric Data Values7.7Apr 10, 2026
• CVE-2026-35471Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs9.8Apr 6, 2026
• CVE-2026-35393Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs POST multipart upload9.8Apr 6, 2026
• CVE-2026-35392goshs has an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs PUT Upload9.8Apr 6, 2026
• CVE-2026-34581goshs has Auth Bypass via Share Token8.1Apr 2, 2026