Vulnerabilities > GIN Gonic

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-08	CVE-2023-29401	Download of Code Without Integrity Check vulnerability in Gin-Gonic GIN The filename parameter of the Context.FileAttachment function is not properly sanitized. network low complexity gin-gonic CWE-494	4.3
2023-05-04	CVE-2023-26125	Improper Input Validation vulnerability in Gin-Gonic GIN Versions of the package github.com/gin-gonic/gin before 1.9.0 are vulnerable to Improper Input Validation by allowing an attacker to use a specially crafted request via the X-Forwarded-Prefix header, potentially leading to cache poisoning. Note: Although this issue does not pose a significant threat on its own it can serve as an input vector for other more impactful vulnerabilities. network low complexity gin-gonic CWE-20	7.3
2022-12-27	CVE-2020-36567	Improper Encoding or Escaping of Output vulnerability in Gin-Gonic GIN Unsanitized input in the default logger in github.com/gin-gonic/gin before v1.6.0 allows remote attackers to inject arbitrary log lines. network low complexity gin-gonic CWE-116	7.5
2021-01-20	CVE-2020-28483	HTTP Request Smuggling vulnerability in Gin-Gonic GIN This affects all versions of package github.com/gin-gonic/gin. network low complexity gin-gonic CWE-444	7.1

Vulnerabilities > GIN Gonic {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"GIN Gonic"}]}