Go modules · proxy.golang.org
github.tiyicn.workers.dev/vulncheck-oss/go-exploit
Remote Payload: matched "curl "
Why PkgRadar flagged v1.59.1-0.20260609190918-65559128d0a6
| Severity | Signal | Evidence |
|---|---|---|
| medium | Remote Payload | matched "curl " · github.tiyicn.workers.dev/vulncheck-oss/[email protected]/payload/dropper/unix.go |
| medium | Remote Payload | matched "Invoke-WebRequest" · github.tiyicn.workers.dev/vulncheck-oss/[email protected]/payload/dropper/windows.go |
| medium | Remote Payload | matched "curl " · github.tiyicn.workers.dev/vulncheck-oss/[email protected]/payload/reverse/bash.go |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v1.59.1-0.20260609190918-65559128d0a6 | High risk | 36 | 2026-06-15 |
v1.59.0 | High risk | 36 | 2026-06-15 |
Block this in CI
pkgradar gate --ecosystem go github.tiyicn.workers.dev/vulncheck-oss/[email protected]