Lucene search
Veracode Vulnerability DatabaseVERACODE:13277HistoryJan 29, 2019 - 1:10 a.m.
Insecure CORS Defaults
2019-01-2901:10:29
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
1
0.001 Low
EPSS
Percentile
48.8%
github.com/rs/cors is vulnerable to insecure CORS defaults. The vulnerability exists as AllowCredentials was default to true, and no warnings were given when used with AllowOrigin: *.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/rs/cors | eq | HEAD | |
| github.com/rs/cors | le | 1.4.0 |
Related
osv
osv
github.com/gofiber/fiber/v2 vulnerable to Origin Validation Error
2022-05-14 01:33:06
CVE-2018-20744
2019-01-28 08:29:00
Insecure wildcard CORS policy in github.com/rs/cors
2023-06-08 18:30:06
github
github
github.com/gofiber/fiber/v2 vulnerable to Origin Validation Error
2022-05-14 01:33:06
cve
cve
CVE-2018-20744
2019-01-28 08:29:00
nvd
nvd
CVE-2018-20744
2019-01-28 08:29:00
prion
prion
Code injection
2019-01-28 08:29:00
cvelist
cvelist
CVE-2018-20744
2019-01-28 08:00:00