Vulnerability Report: GO-2022-1213
- CVE-2018-25060, GHSA-hhxg-px5h-jc32
- Affects: github.com/go-macaron/csrf
- Published: Jan 03, 2023
- Modified: May 20, 2024
The Options.Secure value is ignored, and cookies created by Generate never have the secure attribute.
Affected Packages
-
PathGo VersionsSymbols
-
before v0.0.0-20180426211050-dadd1711a617
Aliases
References
- https://github.com/go-macaron/csrf/pull/7
- https://github.com/go-macaron/csrf/commit/dadd1711a617000b70e5e408a76531b73187031c
- https://vuln.go.dev/ID/GO-2022-1213.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.