Lucene search
GoogleOSV:GO-2024-2955HistoryJul 02, 2024 - 7:23 p.m.
Gin mishandles a wildcard in the origin string in github.com/gin-contrib/cors
2024-07-0219:23:53
Google
osv.dev
7
gin-gonic
cors
wildcard
origin string
github repository
software
7.1 High
AI Score
Confidence
High
Gin-Gonic CORS middleware mishandles a wildcard at the end of an origin string. Examples: https://example.community/* is accepted by the origin string https://example.com/* and http://localhost.example.com/* is accepted by the origin string http://localhost/* .
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/gin-contrib/cors | lt | 1.6.0 |
Related
ubuntucve
ubuntucve
CVE-2019-25211
2024-06-29 00:00:00
redhatcve
redhatcve
CVE-2019-25211
2024-07-05 05:07:32
osv
osv
Gin mishandles a wildcard at the end of an origin string
2024-06-29 06:31:40
nvd
nvd
CVE-2019-25211
2024-06-29 00:15:02
cve
cve
CVE-2019-25211
2024-06-29 00:15:02
cvelist
cvelist
CVE-2019-25211
2024-06-28 00:00:00
github
github
Gin mishandles a wildcard at the end of an origin string
2024-06-29 06:31:40
debiancve
debiancve
CVE-2019-25211
2024-06-29 00:15:02