github.com/forceu/gokapi

Go2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting github.com/forceu/gokapipage 1 of 1

CVE-2025-48494MEDIUMCVSS 5.4EG 5.4
2025-06-02
Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. When using end-to-end encryption, a stored cross-site scripting vulnerability can be exploited by uploading a file with JavaScript code embedded …
CVE-2025-48495MEDIUMCVSS 5.4EG 5.4
2025-06-02
Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. By renaming the friendly name of an API key, an authenticated user could inject JS into the API key overview, which would also be executed when a…

Check whether github.com/forceu/gokapi is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/forceu/gokapi CVEs against the assets you own.

Start Free Scan →