Vulnerabilidades em gofiber
16 resultadosCVE-2020-15111MEDIUMCRLF vulnerability in FiberEPSS 0.9%CVE-2024-38513CRITICALFiber Session Middleware Token Injection VulnerabilityEPSS 0.7%CVE-2024-25124CRITICALFiber has Insecure CORS Configuration, Allowing Wildcard Origin with CredentialsEPSS 0.7%CVE-2026-25891HIGHFiber has an Arbitrary File Read in Static Middleware on WindowsEPSS 0.6%CVE-2026-25882MEDIUMFiber has a Denial of Service Vulnerability via Route Parameter OverflowEPSS 0.6%CVE-2023-41338MEDIUMVulnerability in Ctx.IsFromLocal() in gofiberEPSS 0.5%CVE-2024-22199CRITICALDjango Template Engine Vulnerable to XSSEPSS 0.5%CVE-2025-66630CRITICALFiber insecurely fallsback in utils.UUIDv4() / utils.UUID() — predictable / zero‑UUID on crypto/rand failureEPSS 0.5%CVE-2025-48075HIGHFiber panics when fiber.Ctx.BodyParser parses invalid range indexEPSS 0.4%CVE-2025-66565CRITICALFiber Utils UUIDv4 and UUID Silent Fallback to Predictable ValuesEPSS 0.4%CVE-2026-25899HIGHFiber is Vulnerable to Denial of Service via Flash Cookie Unbounded AllocationEPSS 0.4%CVE-2025-54801HIGHFiber Susceptible to Crash via `BodyParser` Due to Unvalidated Large Slice Index in DecoderEPSS 0.3%CVE-2023-45128CRITICALCSRF Token Reuse Vulnerability in fiberEPSS 0.3%CVE-2023-45141HIGHCSRF Token Validation Vulnerability in fiberEPSS 0.3%CVE-2026-30246MEDIUMgithub.com/gofiber/fiber/v3 cache middleware can mix responses across query parametersEPSS 0.3%CVE-2026-42554MEDIUMFiber: XSS in AutoFormat Content NegotiationEPSS 0.2%