6.5 Medium
AI Score
Confidence
High
An issue in vektah gqlparser open-source-library allows a remote attacker to cause a denial of service via a crafted script to the parseDirectives function.
gist.github.com/uvzz/d3ed9d4532be16ec1040a2cf3dfec8d1
github.com/99designs/gqlgen/issues/3118
github.com/advisories/GHSA-2hmf-46v7-v6fx
github.com/vektah/gqlparser/blob/master/parser/query.go#L316
github.com/vektah/gqlparser/commit/36a3658873bf5a107f42488dfc392949cdd02977