Gorilla_Sessions

The following links below are a compilation of the CVE-2024-3400 vulnerability, supposedly affected by the gorilla/sessions library, which allows a traversal path via the cookie. Attached are 2 listings where you can find all the repositories and packages with dependencies on the library

Pull request gorilla/sessions

Search in the code of sessions.NewFilesystemStore

Vulnerability CVE-2024-3400 and PoC

Package dependencies Package 5569 lines

Repository dependencies Repository 15242 lines