GHSA-jwrv-x6rx-8vfm

Suggest an improvement
Source
https://github.com/advisories/GHSA-jwrv-x6rx-8vfm
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-jwrv-x6rx-8vfm/GHSA-jwrv-x6rx-8vfm.json
JSON Data
https://api.test.osv.dev/v1/vulns/GHSA-jwrv-x6rx-8vfm
Aliases
Published
2022-12-25T12:30:25Z
Modified
2024-05-20T21:42:40Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
Macaron i18n Open Redirect vulnerability
Details

A vulnerability was found in Macaron i18n. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file i18n.go. The manipulation leads to open redirect. The attack can be launched remotely. Upgrading to version 0.5.0 can address this issue. The name of the patch is 329b0c4844cc16a5a253c011b55180598e707735. It is recommended to upgrade the affected component. The identifier VDB-216745 was assigned to this vulnerability.

Database specific 
{
    "nvd_published_at": "2022-12-25T11:15:00Z",
    "cwe_ids": [
        "CWE-601"
    ],
    "severity": "MODERATE",
    "github_reviewed": true,
    "github_reviewed_at": "2022-12-30T17:19:29Z"
}
References

Affected packages

Go / github.com/go-macaron/i18n

Package

Name
github.com/go-macaron/i18n
View open source insights on deps.dev
Purl
pkg:golang/github.com/go-macaron/i18n

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.5.0