go is vulnerable to Improper Sanitization. Whitespace characters contained outside of the character set “\t\n\f\r\u0020\u2028\u2029” in JavaScript contexts that also contain actions may not be properly sanitized during execution resulting in the vulnerability.