VYPR

Go modules package

github.com/valyala/fasthttp

pkg:golang/github.com/valyala/fasthttp

Vulnerabilities (1)

  • CVE-2022-21221MedMar 17, 2022
    affected < 1.34.0fixed 1.34.0

    The package github.com/valyala/fasthttp before 1.34.0 are vulnerable to Directory Traversal via the ServeFile function, due to improper sanitization. It is possible to be exploited by using a backslash %5c character in the path. **Note:** This security issue impacts Windows users