CVE-2020-36067
go/github.com/tidwall/gjson
Improper Validation of Array Index
GJSON allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a crafted GET call.
All versions up to 1.6.5
Upgrade to version 1.6.6 or above.
2021-01-12
source |