Lucene search

Authorization Bypass

🗓️ 12 Jan 2023 09:28:37Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 13 Views

Authorization Bypass vulnerability in Cors.go

Reporter	Title	Published	Views	Family All 11
OSV	Improper access control in github.com/gorilla/handlers	14 Apr 202120:04	–	osv
OSV	gorilla/handlers may allow requester to bypass expected behavior of the Same Origin Policy	28 Dec 202200:30	–	osv
OSV	CVE-2017-20146	27 Dec 202222:15	–	osv
Prion	Design/Logic Flaw	27 Dec 202222:15	–	prion
Cvelist	CVE-2017-20146 Improper access control in github.com/gorilla/handlers	27 Dec 202221:13	–	cvelist
NVD	CVE-2017-20146	27 Dec 202222:15	–	nvd
UbuntuCve	CVE-2017-20146	27 Dec 202200:00	–	ubuntucve
CVE	CVE-2017-20146	27 Dec 202222:15	–	cve
Debian CVE	CVE-2017-20146	27 Dec 202222:15	–	debiancve
RedhatCVE	CVE-2017-20146	4 Jan 202320:35	–	redhatcve

Vulners

Node

-github.com\/gorilla\/handlersRange≤v1.2.1

Source	Link
pkg	www.pkg.go.dev/vuln/GO-2020-0020
github	www.github.com/gorilla/handlers/pull/116
github	www.github.com/gorilla/handlers/commit/90663712d74cb411cbef281bc1e08c19d1a76145
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
github	www.github.com/advisories/GHSA-jcr6-mmjj-pchw

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Jan 2023 09:37Current

8.9High risk

Vulners AI Score8.9

EPSS0.00212