FLAT-KP02T (CVE-2026-46415)
Improper authorization control for web services In pkg.jsn.cam/caddy-defender
1.7
Low
Ecosystem: Go
Package: pkg.jsn.cam/caddy-defender
FLAT-MQF2A (GHSA-gx7w-56w6-g48x)
Authentication mechanism absence or evasion In github.com/caddyserver/caddy/v2
0.6
Low
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-O3PUG (GHSA-wwhq-w58m-w29c)
Remote command execution In github.com/caddyserver/caddy/v2
2.7
Low
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-DYYEJ (CVE-2026-45692)
Lack of data validation In github.com/caddyserver/caddy/v2
1.3
Low
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-69G0M (CVE-2026-45135)
Lack of data validation In github.com/caddyserver/caddy/v2
8.4
High
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-31B7K (CVE-2026-30851)
Improper authorization control for web services In github.com/caddyserver/caddy/v2
5.9
Medium
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-21OCY (CVE-2026-30852)
Remote command execution In github.com/caddyserver/caddy/v2
2.7
Low
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-04A3D (CVE-2026-27587)
Lack of data validation - Type confusion In github.com/caddyserver/caddy/v2
6.6
Medium
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-M9ZZB (CVE-2026-27588)
Lack of data validation - Type confusion In github.com/caddyserver/caddy/v2
6.6
Medium
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-7Z25C (CVE-2026-27590)
Lack of data validation In github.com/caddyserver/caddy/v2
8.1
High
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-HBKPH (CVE-2026-27585)
Lack of data validation In github.com/caddyserver/caddy/v2
4.6
Medium
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-IJIOK (CVE-2026-27586)
Insecure deserialization In github.com/caddyserver/caddy/v2
8.0
High
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-PM7X3 (CVE-2026-27589)
Cross-site request forgery In github.com/caddyserver/caddy/v2
4.6
Medium
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-QPEE1 (MAL-2025-25739)
Use of software with malware In macaddy
5.2
Medium
Ecosystem: Npm
Package: macaddy
FLAT-CGW1D (MAL-2025-35021)
Use of software with malware In test-mlw2-caddy-erose
5.2
Medium
Ecosystem: Npm
Package: test-mlw2-caddy-erose
FLAT-G6TIS (MAL-2024-6512)
Use of software with malware In addy-caddy_client
5.2
Medium
Ecosystem: RubyGems
Package: addy-caddy_client
FLAT-NYX56 (CVE-2024-21498)
Server-side request forgery (SSRF) In github.com/greenpau/caddy-security
2.7
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-X32H6 (CVE-2024-21500)
Lack of protection against brute force attacks In github.com/greenpau/caddy-security
1.7
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-WJ2P6 (CVE-2024-21497)
Uncontrolled external site redirect In github.com/greenpau/caddy-security
1.3
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-NZTSH (CVE-2024-21499)
Lack of data validation In github.com/greenpau/caddy-security
1.3
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-Z4EUN (CVE-2024-21492)
Insecure session expiration time In github.com/greenpau/caddy-security
1.7
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-5B9AQ (CVE-2024-21495)
Insecure generation of random numbers In github.com/greenpau/caddy-security
2.7
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-HB5OV (CVE-2024-21493)
Lack of data validation In github.com/greenpau/caddy-security
2.7
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-J0XK9 (CVE-2024-21494)
Spoofing In github.com/greenpau/caddy-security
1.3
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-N2E6Q (CVE-2024-21496)
Reflected cross-site scripting (XSS) In github.com/greenpau/caddy-security
1.3
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-4E0NM (CVE-2023-52430)
Reflected cross-site scripting (XSS) In github.com/greenpau/caddy-security
1.2
Low
Ecosystem: Go
Package: github.com/greenpau/caddy-security
FLAT-3KG2Z (CVE-2023-50463)
Spoofing In github.com/shift72/caddy-geo-ip
6.6
Medium
Ecosystem: Go
Package: github.com/shift72/caddy-geo-ip
FLAT-OO9KK (CVE-2022-28923)
Uncontrolled external site redirect In github.com/caddyserver/caddy/v2
1.3
Low
Ecosystem: Go
Package: github.com/caddyserver/caddy/v2
FLAT-5QF2B (CVE-2018-21246)
Authentication mechanism absence or evasion In github.com/caddyserver/caddy
2.7
Low
Ecosystem: Go
Package: github.com/caddyserver/caddy
FLAT-3CAX4 (GHSA-gmhj-xjfh-cf6m)
Authentication mechanism absence or evasion In github.com/mohammed90/caddy-ssh
5.7
Medium
Ecosystem: Go
Package: github.com/mohammed90/caddy-ssh
FLAT-FMJK5 (CVE-2022-34037)
Out-of-bounds read In github.com/caddyserver/caddy
0.0
None
Ecosystem: Go
Package: github.com/caddyserver/caddy
FLAT-DR6O1 (CVE-2022-29718)
Uncontrolled external site redirect In github.com/caddyserver/caddy
1.3
Low
Ecosystem: Go
Package: github.com/caddyserver/caddy
FLAT-G4LQX (CVE-2018-19148)
Enabled default configuration In github.com/caddyserver/caddy
1.7
Low
Ecosystem: Go
Package: github.com/caddyserver/caddy