QID 980002

QID 980002: Go (go) Security Update for github.com/schollz/rwtxt (GHSA-458f-26r3-x2c3)

Cross-site scripting vulnerability in rwtxt versions prior to v1.8.6 allows a remote attacker to inject an arbitrary script via unspecified vectors.

Successful exploitation of this vulnerability may affect the confidentiality, integrity, and availability of the targeted user.

  • CVSS V3 rated as High - 6.1 severity.
  • CVSS V2 rated as Medium - 4.3 severity.
  • Solution
    Customers are advised to refer to GHSA-458f-26r3-x2c3 for updates pertaining to this vulnerability.
    Vendor References

    CVEs related to QID 980002

    Software Advisories
    Advisory ID Software Component Link
    GHSA-458f-26r3-x2c3 github.com/schollz/rwtxt URL Logo github.com/advisories/GHSA-458f-26r3-x2c3