Go standard library - CVE CyberSecurity Database News (Page 2)

Sep 8, 2023 XSS Exploit Go standard library

CVE-2023-39319 - Critical XSS Vulnerability in the HTML/Template Package Affecting "<script", "<!--“, and "</script" Handling

A security vulnerability (CVE-2023-39319) has been discovered in the html/template package, which may lead to Cross-Site Scripting (XSS) attacks if exploited. This vulnerability affects

CVE-2023-29409 - Excessive CPU Utilization due to Extremely Large RSA Keys in Certificate Chains

Aug 2, 2023 Exploit Go standard library

CVE-2023-29409 - Excessive CPU Utilization due to Extremely Large RSA Keys in Certificate Chains

CVE-2023-29409 addresses a vulnerability in client/server systems, where extremely large RSA keys in certificate chains can result in excessive CPU utilization. The issue arises

CVE-2023-29406 - Understanding the Vulnerability in the HTTP/1 Client and the Importance of Validating Host Headers

Jul 11, 2023 Exploit Go standard library

CVE-2023-29406 - Understanding the Vulnerability in the HTTP/1 Client and the Importance of Validating Host Headers

A recently discovered security vulnerability, designated as CVE-2023-29406, has been identified in the HTTP/1 client, impacting its ability to properly handle and secure Host

Jun 8, 2023 Go standard library runtime

CVE-2023-29403: Understanding the Unix Privilege Escalation Vulnerability in Go Runtime

A recently discovered security vulnerability (CVE-2023-29403) within the Go runtime for Unix platforms has caught the attention of developers and security professionals alike. This vulnerability

May 11, 2023 CSS Exploit PHP Go standard library

CVE-2023-24539: Angle Brackets (<>) in CSS Contexts May Lead to Injection of Unexpected HTML in Templates Containing Multiple Actions Separated by a '/' Character

In recent days, a new vulnerability has been discovered and assigned as CVE-2023-24539. This vulnerability revolves around the use of angle brackets (<>) in