VYPR

Sonic

by Go Sonic

Source repositories

CVEs (2)

  • CVE-2025-15414MedJan 1, 2026
    risk 0.31cvss 4.7epss 0.00

    A flaw has been found in go-sonic sonic up to 1.1.4. The affected element is the function FetchTheme of the file service/theme/git_fetcher.go of the component Theme Fetching API. Executing a manipulation of the argument uri can lead to server-side request forgery. The attack may…

  • CVE-2022-0324Nov 14, 2022
    risk 0.00cvss epss 0.01

    There is a vulnerability in DHCPv6 packet parsing code that could be explored by remote attacker to craft a packet that could cause buffer overflow in a memcpy call, leading to out-of-bounds memory write that would cause dhcp6relay to crash. Dhcp6relay is a critical process and…