x/vulndb: potential Go vuln in github.com/KubeOperator/kubepi: GHSA-v4w5-r2xc-7f8h

[GoVulnBot]

In GitHub Security Advisory GHSA-v4w5-r2xc-7f8h, there is a vulnerability in the following Go packages or modules:

Unit	Fixed	Vulnerable Ranges
github.com/KubeOperator/kubepi	1.6.4	<= 1.6.3

Cross references:
No existing reports found with this module or alias.

See doc/triage.md for instructions on how to triage this report.

modules:
  - module: TODO
    versions:
      - introduced: TODO (earliest fixed "1.6.4", vuln range "<= 1.6.3")
    packages:
      - package: github.com/KubeOperator/kubepi
description: |-
    ### Summary
    A session fixation attack allows an attacker to hijack a legitimate user session. The attack investigates a flaw in how the online application handles the session ID, especially the susceptible web application.

    ### Affected Version
    <= v1.6.3

    ### For more information
    If you have any questions or comments about this advisory, please [open an issue](https://github.com/KubeOperator/KubePi/issues).

    This vulnerability is reported by [sachinh09](https://huntr.dev/users/sachinh09/) from [huntr.dev](https://huntr.dev/).
cves:
  - CVE-2023-22479
ghsas:
  - GHSA-v4w5-r2xc-7f8h

[gopherbot]

Change https://go.dev/cl/464316 mentions this issue: data/excluded: batch add excluded reports

[gopherbot]

Change https://go.dev/cl/592759 mentions this issue: data/reports: unexclude 75 reports

[gopherbot]

Change https://go.dev/cl/606781 mentions this issue: data/reports: unexclude 20 reports (1)