Vulnerability Report: GO-2023-1600
- CVE-2023-26047, GHSA-p2pf-g8cq-3gq5
- Affects: github.com/kitabisa/teler-waf
- Published: Mar 02, 2023
- Modified: Jun 12, 2023
Improper handling of payload with special characters, such as CR/LF and horizontal tab, can lead to execution of arbitrary JavaScript code.
For detailed information about this vulnerability, visit https://github.com/advisories/GHSA-p2pf-g8cq-3gq5.
Affected Packages
-
PathVersionsSymbols
-
before v0.2.0
Aliases
References
- https://github.com/advisories/GHSA-p2pf-g8cq-3gq5
- https://github.com/kitabisa/teler-waf/commit/6e1b0e19b8adc1bbc3513a986025d4adf88d59f8
- https://github.com/kitabisa/teler-waf/releases/tag/v0.2.0
- https://vuln.go.dev/ID/GO-2023-1600.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.