New: Corgea AI Pentesting — autonomous penetration testing in hours, not weeks
HIGH 7.5 Go

golang.org/x/net/html NULL Pointer Dereference vulnerability

GHSA-5p4h-3377-7w67 · CVE-2018-17075 · GO-2021-0078

Published · Modified

Description

The html package (aka x/net/html) before 2018-07-13 in Go mishandles "in frameset" insertion mode, leading to a "panic: runtime error" for html.Parse of