Low severity3.7NVD Advisory· Published May 24, 2024· Updated Apr 15, 2026
CVE-2024-35232
CVE-2024-35232
Description
github.com/huandu/facebook is a Go package that fully supports the Facebook Graph API with file upload, batch request and marketing API. access_token can be exposed in error message on fail in HTTP request. This issue has been patched in version 2.7.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/huandu/facebook/v2Go | < 2.7.2 | 2.7.2 |
Affected products
1Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-3f65-m234-9mxrghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-35232ghsaADVISORY
- cs.opensource.google/go/go/+/refs/tags/go1.22.3:src/net/http/client.go;l=629-633nvdWEB
- cs.opensource.google/go/go/+/refs/tags/go1.22.3:src/net/url/url.go;l=30nvdWEB
- github.com/huandu/facebook/blob/1591be276561bbdb019c0279f1d33cb18a650e1b/session.gonvdWEB
- github.com/huandu/facebook/commit/8b34431b91b32903c8821b1d7621bf81a029d8e4nvdWEB
- github.com/huandu/facebook/security/advisories/GHSA-3f65-m234-9mxrnvdWEB
News mentions
0No linked articles in our index yet.