VYPR
High severity7.5NVD Advisory· Published Dec 27, 2022· Updated Jun 17, 2026

CVE-2019-25073

CVE-2019-25073

Description

Improper path sanitization in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/goadesign/goaGo
< 1.4.31.4.3
goa.design/goaGo
< 1.4.31.4.3
goa.design/goa/v3Go
< 3.0.93.0.9

Affected products

6

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.