Go Package Vulnerabilities

All 1,264 Go modules with known CVEs, ranked by live CVE volume — 5,148 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 1,151.github.com/TheTNB/panel/v21 CVE
  2. 1,152.github.com/theupdateframework/go-tuf1 CVE
  3. 1,153.github.com/tillitis/tkeyclient1 CVE
  4. 1,154.github.com/tnb-labs/panel1 CVE
  5. 1,155.github.com/tnborg/panel1 CVE
  6. 1,156.github.com/traefik/traefik/api1 CVE
  7. 1,157.github.com/traefik/traefik/v2/pkg/api1 CVE
  8. 1,158.github.com/traPtitech/traQ1 CVE
  9. 1,159.github.com/trufflesecurity/trufflehog1 CVE
  10. 1,160.github.com/trufflesecurity/trufflehog/v31 CVE
  11. 1,161.github.com/turt2live/matrix-media-repo1 CVE
  12. 1,162.github.com/txthinking/brook1 CVE
  13. 1,163.github.com/tyktechnologies/tyk-identity-broker1 CVE
  14. 1,164.github.com/TykTechnologies/tyk-identity-broker1 CVE
  15. 1,165.github.com/uber/kraken1 CVE
  16. 1,166.github.com/umputun/remark421 CVE
  17. 1,167.github.com/Unstructured-IO/unstructured1 CVE
  18. 1,168.github.com/updatecli/updatecli1 CVE
  19. 1,169.github.com/uptrace/bun/driver/pgdriver1 CVE
  20. 1,170.github.com/u-root/u-root/pkg/cpio1 CVE
  21. 1,171.github.com/v2fly/v2ray-core1 CVE
  22. 1,172.github.com/v2fly/v2ray-core/v41 CVE
  23. 1,173.github.com/valyala/fasthttp1 CVE
  24. 1,174.github.com/vbatts/tar-split1 CVE
  25. 1,175.github.com/vektah/gqlparser1 CVE
  26. 1,176.github.com/vektah/gqlparser/v21 CVE
  27. 1,177.github.com/VictoriaMetrics/VictoriaMetrics1 CVE
  28. 1,178.github.com/vitessio/vitess1 CVE
  29. 1,179.github.com/volcano-sh/volcano1 CVE
  30. 1,180.github.com/wal-g/wal-g1 CVE
  31. 1,181.github.com/weaveworks/tf-controller1 CVE
  32. 1,182.github.com/weaveworks/weave1 CVE
  33. 1,183.github.com/whilp/git-urls1 CVE
  34. 1,184.github.com/whyrusleeping/tar-utils1 CVE
  35. 1,185.github.com/windmill-labs/windmill1 CVE
  36. 1,186.github.com/wneessen/go-mail1 CVE
  37. 1,187.github.com/wolfi-dev/wolfictl1 CVE
  38. 1,188.github.com/writefreely/writefreely1 CVE
  39. 1,189.github.com/xddxdd/bird-lg-go1 CVE
  40. 1,190.github.com/Xe/x1 CVE
  41. 1,191.github.com/Xhofe/alist1 CVE
  42. 1,192.github.com/yaklang/yaklang1 CVE
  43. 1,193.github.com/ydb-platform/ydb-go-sdk/v31 CVE
  44. 1,194.github.com/yi-ge/unzip1 CVE
  45. 1,195.github.com/Yubico/yubihsm-connector1 CVE
  46. 1,196.github.com/yuin/goldmark/renderer/html1 CVE
  47. 1,197.github.com/yusing/godoxy1 CVE
  48. 1,198.github.com/zarf-dev/zarf1 CVE
  49. 1,199.github.com/zeromicro/go-zero1 CVE
  50. 1,200.github.com/zhaojh329/rttys1 CVE

Which Go packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →