UNKNOWN Go
Incorrect parsing of IPv6 host literals in net/url
GO-2026-4601 · BIT-golang-2026-25679 · CVE-2026-25679
Published · Modified
Description
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
References
Ready to move
Start Securing
Free, no credit card | First findings in minutes