Ecosystem	Package	Version

Vulnerabilities

sonatype-2026-000147

sonatype-2026-000147

github.com/go-chi/chi - URL Redirection to Untrusted Site ('Open Redirect')

Published Jan 15, 2026

https://github.com/advisories/GHSA-mqqf-5wvp-8fh8

CVSS ScoreMedium

5.1

Ecosystem	Package	Version


rpm	forgejo	12.0.1-1.el10_1
rpm	forgejo	12.0.2-1.el10_2
rpm	forgejo	12.0.3-1.el10_2
rpm	forgejo	12.0.4-1.el10_2
rpm	forgejo-debugsource	12.0.1-1.el10_1
rpm	forgejo-debugsource	12.0.2-1.el10_2
rpm	forgejo-debugsource	12.0.3-1.el10_2
rpm	forgejo-debugsource	12.0.4-1.el10_2
rpm	gh	2.79.0-1.el10_0
rpm	gh	2.79.0-1.el10_1
rpm	gh	2.79.0-1.el10_2
rpm	gh	2.79.0-1.el9
rpm	gh	2.83.0-1.el10_2
rpm	gh	2.83.2-1.el10_1
rpm	gh	2.83.2-1.el10_2
rpm	gh	2.83.2-1.el9
rpm	gh-debugsource	2.79.0-1.el10_0
rpm	gh-debugsource	2.79.0-1.el10_1
rpm	gh-debugsource	2.79.0-1.el10_2
rpm	gh-debugsource	2.79.0-1.el9
rpm	gh-debugsource	2.83.0-1.el10_2
rpm	gh-debugsource	2.83.2-1.el10_1
rpm	gh-debugsource	2.83.2-1.el10_2
rpm	gh-debugsource	2.83.2-1.el9
golang	github.com/go-chi/chi/v5	v5.2.2
golang	github.com/go-chi/chi/v5	v5.2.3
rpm	rclone	1.70.3-1.el10_1
rpm	rclone	1.70.3-1.el9
rpm	rclone	1.71.0-1.el10_1
rpm	rclone	1.71.0-1.el9
rpm	rclone	1.72.0-1.el10_1
rpm	rclone	1.72.0-1.el10_2
rpm	rclone	1.72.1-1.el10_1
rpm	rclone	1.72.1-1.el10_2
rpm	rclone	1.72.1-1.el9
rpm	rclone	1.73.0-2.el10_1
rpm	rclone	1.73.0-2.el10_2
rpm	rclone	1.70.2-1.0.1.el8
rpm	rclone	1.70.2-1.0.1.el9
rpm	rclone	1.70.3-1.0.1.el8
rpm	rclone	1.70.3-1.0.1.el9
rpm	rclone	1.71.0-1.0.1.el8
rpm	rclone	1.71.0-1.0.1.el9
rpm	rclone	1.71.1-1.0.1.el8
rpm	rclone	1.71.1-1.0.1.el9
rpm	rclone	1.71.2-1.0.1.el8
rpm	rclone	1.71.2-1.0.1.el9
rpm	rclone	1.72.0-1.0.1.el8
rpm	rclone	1.72.0-1.0.1.el9
rpm	rclone	1.72.1-1.0.1.el8

sonatype-2026-000147 | Components Impacted | Sonatype Guide | Sonatype Guide