dinever/golf

Releases4

Frequency3 months 2 weeks

Last Release over 9 years ago

Stars268

:golf: The Golf web framework

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2016-15005 ↗	Dec 27, 2022Tuesday, 27 December 2022, 22:15	8.8 HIGH	—
CSRF tokens are generated using math/rand, which is not a cryptographically secure random number generator, allowing an attacker to predict values and bypass CSRF protections with relatively few requests.