Go CORS Handler CVE-2018-20744 Security Bypass Vulnerability
BID:106834
CVE-2018-20744 |Info
Go CORS Handler CVE-2018-20744 Security Bypass Vulnerability
| Bugtraq ID: | 106834 |
| Class: | Input Validation Error |
| CVE: |
CVE-2018-20744 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 28 2019 12:00AM |
| Updated: | Jan 28 2019 12:00AM |
| Credit: | chenjj |
| Vulnerable: |
Olivier Poitrey Go CORS 0 |
| Not Vulnerable: | |
Discussion
Go CORS Handler CVE-2018-20744 Security Bypass Vulnerability
Go CORS Handler is prone to a security-bypass vulnerability.
Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.
Go CORS handler through 1.3.0 are vulnerable.
Go CORS Handler is prone to a security-bypass vulnerability.
Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.
Go CORS handler through 1.3.0 are vulnerable.
Exploit / POC
Go CORS Handler CVE-2018-20744 Security Bypass Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Go CORS Handler CVE-2018-20744 Security Bypass Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.