VYPR

Go modules package

github.com/gorilla/schema

pkg:golang/github.com/gorilla/schema

Vulnerabilities (1)

  • CVE-2024-37298HigJul 1, 2024
    affected < 1.4.1fixed 1.4.1

    gorilla/schema converts structs to and from form values. Prior to version 1.4.1 Running `schema.Decoder.Decode()` on a struct that has a field of type `[]struct{...}` opens it up to malicious attacks regarding memory allocations, taking advantage of the sparse slice functionality