Version v4.12.0
echo
High performance, minimalist Go web framework
Install Instructions
go get github.com/labstack/echo
Current Version Release Date Apr 15, 2024
Language Go
Package URL (purl) pkg:github/labstack/echo@f13e2640f0eacdbe1bffc076c25126368d6445d2
Find echo vulnerabilities in your supply chain.
echo Vulnerabilities
Sort by
CVE (Latest)
CVE (Latest)
-
CVE (Latest)
-
CVE (Oldest)
-
CVSS Score (Highest)
-
CVSS Score (Lowest)
CVE  |
CVSS Score |
CWE(s) |
EPSS Score |
EPSS % |
Impacted Versions |
|---|---|---|---|---|---|
| CVE-2022-40083 | High 9.6 | CWE-601 | 0.03584 | 0.91946 |
|
| FOSSA-2021-0002 | High 7.4 | CWE-23 | None | None |
|
| FOSSA-2021-0003 | High 7.4 | CWE-444 | None | None |
|
echo Vulnerability Remediation Guidance
| CVE | Description | Full list of Impacted Versions | Fix |
|---|---|---|---|
| FOSSA-2021-0003 | None | Patch → 4.9.0 | |
| FOSSA-2021-0002 | None | Patch → 4.9.0 | |
| CVE-2022-40083 | Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery (SSRF). | Patch → 4.9.0 |
Instantly see if these echo vulnerabilities affect your code.