Home
HIGH: 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:NDefault status
unaffected
Any version
affected
Description
Unauthenticated Backdoor in Enable CORS <= 2.0.3 versions.
Problem types
CWE-321 Use of Hard-coded Cryptographic Key
Product status
Any version
Credits
Ananda Dhakal (Patchstack) | Patchstack Bug Bounty Program
References
patchstack.com/...gin-2-0-3-backdoor-vulnerability?_s_id=cve