Cryptographically Weak Random Number Generation in github.com/dinever/golf. Predictable CSRF Tokens
Reporter | Title | Published | Views | Family All 8 |
---|---|---|---|---|
![]() | Golf may allow attacker to bypass CSRF protections due to weak PRNG | 28 Dec 202200:30 | – | github |
![]() | Golf may allow attacker to bypass CSRF protections due to weak PRNG | 28 Dec 202200:30 | – | osv |
![]() | CVE-2016-15005 | 27 Dec 202222:15 | – | osv |
![]() | Cryptographically weak random number generation in github.com/dinever/golf | 14 Apr 202120:04 | – | osv |
![]() | CVE-2016-15005 | 27 Dec 202222:15 | – | nvd |
![]() | Cross site request forgery (csrf) | 27 Dec 202222:15 | – | prion |
![]() | CVE-2016-15005 | 27 Dec 202222:15 | – | cve |
![]() | Cross-Site Request Forgery (CSRF) | 11 Jan 202306:22 | – | veracode |
[
{
"vendor": "github.com/dinever/golf",
"product": "github.com/dinever/golf",
"collectionURL": "https://pkg.go.dev",
"packageName": "github.com/dinever/golf",
"versions": [
{
"version": "0",
"lessThan": "0.3.0",
"status": "affected",
"versionType": "semver"
}
],
"programRoutines": [
{
"name": "randomBytes"
},
{
"name": "Context.Render"
},
{
"name": "Context.RenderFromString"
}
],
"defaultStatus": "unaffected"
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo