EPSS
Percentile
74.8%
github.com/goadesign/goa is vulnerable to path traversal. The vulnerability exists in service.go due to improper path sanitization which allows an attacker to overwrite files outside of the extraction directory.
service.go
github.com/advisories/GHSA-fjgq-224f-fq37
github.com/goadesign/goa/commit/70b5a199d0f813d74423993832c424e1fc73fb39
github.com/goadesign/goa/pull/2388
pkg.go.dev/vuln/GO-2020-0032