Lucene search

K
cvelistMitreCVELIST:CVE-2022-26945
HistoryMay 25, 2022 - 11:19 a.m.

CVE-2022-26945

2022-05-2511:19:48
mitre
www.cve.org
1
go-getter protocol switching
configuration bypass
cve-2022-26945

AI Score

9.6

Confidence

High

EPSS

0.002

Percentile

61.4%

go-getter up to 1.5.11 and 2.0.2 allowed protocol switching, endless redirect, and configuration bypass via abuse of custom HTTP response header processing. Fixed in 1.6.1 and 2.1.0.

AI Score

9.6

Confidence

High

EPSS

0.002

Percentile

61.4%