VYPR

Schema

by Gorilla

Source repositories

CVEs (1)

  • CVE-2024-37298HigJul 1, 2024
    risk 0.42cvss 7.5epss 0.01

    gorilla/schema converts structs to and from form values. Prior to version 1.4.1 Running `schema.Decoder.Decode()` on a struct that has a field of type `[]struct{...}` opens it up to malicious attacks regarding memory allocations, taking advantage of the sparse slice…