golang.org/x/net/html has Improper Restriction of Operations within the Bounds of a Memory Buffer
GHSA-fcf9-6fv2-fc5v · CVE-2018-17143 · GO-2022-0193
Published · Modified
Description
The html package (aka x/net/html) through 2018-09-17 in Go mishandles <isindex/action=0>, leading to a "panic: runtime error" in inBodyIM in parse.go during an html.Parse call
Ready to move Free, no credit card | First findings in minutesReferences
Start Securing