blob: 7023c265f23d2a952b824a17ffcc1842d8ce9045 [file] [log] [blame]
module: github.com/gin-gonic/gin
versions:
- fixed: v0.0.0-20141229113116-0099840c98ae
description: |
Due to improper HTTP header santization, a malicious user can spoof their
source IP address by setting the X-Forwarded-For header. This may allow
a user to bypass IP based restrictions, or obfuscate their true source.
published: 2021-04-14T12:00:00Z
credit: "@nl5887"
symbols:
- Context.ClientIP
links:
commit: https://github.com/gin-gonic/gin/commit/0099840c98ae1473c5ff0f18bc93a8e13ceed829
pr: https://github.com/gin-gonic/gin/pull/182