2 matches found
PT-2024-36602 · Hush Line · Hush Line
Name of the Vulnerable Software and Affected Versions: Hush Line versions 0.1.0 through 0.3.4 Description: Hush Line is an open-source whistleblower management system. The production server was misconfigured, missing content security policy and security headers, which could result in bypassing of...
PT-2021-11585 · X/Text +6 · X/Text +6
Name of the Vulnerable Software and Affected Versions: x/text versions prior to 0.3.5 x/text version 1.15.4 Description: A "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag. The x/text/language package is supposed to be able to parse an HTTP...