Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
Github GHSA |
GHSA-rg3p-p27c-2f39 | gohttp is vulnerable to directory traversal via a crafted request |
Wed, 20 May 2026 11:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Itang
Itang gohttp |
|
| Vendors & Products |
Itang
Itang gohttp |
Tue, 19 May 2026 16:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Directory Traversal in gohttp Enabling Arbitrary File Access |
Tue, 19 May 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-22 | |
| Metrics |
cvssV3_1
|
Tue, 19 May 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An issue in gohttp commit 34ea51 allows attackers to execute a directory traversal via supplying a crafted request. | |
| References |
|
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-05-19T14:37:33.811Z
Reserved: 2026-01-09T00:00:00.000Z
Link: CVE-2025-70950
Updated: 2026-05-19T14:37:28.909Z
Status : Deferred
Published: 2026-05-19T15:16:27.180
Modified: 2026-06-17T10:03:28.080
Link: CVE-2025-70950
No data.
OpenCVE Enrichment
Updated: 2026-05-20T10:39:54Z
Github GHSA