graphql-go is a GraphQL server with a focus on ease of use. In versions prior to 1.3.0 there exists a DoS vulnerability that is possible due to a bug in the library that would allow an attacker with specifically designed queries to cause stack overflow panics. Any user with access to the GraphQL ha...
6.5CVSS
6.2AI Score
0.001EPSS
graphql-go (aka GraphQL for Go) through 0.8.0 has infinite recursion in the type definition parser.
7.5CVSS
7.4AI Score
0.001EPSS