GO-2025-3955 — Vulnetix

GO-2025-3955 PUBLISHED

CrossOriginProtection insecure bypass patterns not limited to exact matches in net/http

Affected Products

Vendor	Product	Versions
Go	stdlib	1.25.0, 1.25.0

Timeline

Sep 22, 2025 CVE Published
May 15, 2026 CVE Updated

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›