echo

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

Changes in this version

+ func GetPath(r *http.Request) string

type HTTPError

+ func (he *HTTPError) Unwrap() error

v4.1.16

Mar 30, 2020 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.15

Feb 29, 2020 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

Changes in this version

type Echo

+ IPExtractor IPExtractor

+ func (e *Echo) StartH2CServer(address string, h2s *http2.Server) (err error)

+ type IPExtractor func(*http.Request) string

+ func ExtractIPDirect() IPExtractor

+ func ExtractIPFromRealIPHeader(options ...TrustOption) IPExtractor

+ func ExtractIPFromXFFHeader(options ...TrustOption) IPExtractor

+ type TrustOption func(*ipChecker)

+ func TrustIPRange(ipRange *net.IPNet) TrustOption

+ func TrustLinkLocal(v bool) TrustOption

+ func TrustLoopback(v bool) TrustOption

+ func TrustPrivateNet(v bool) TrustOption

v4.1.14

Jan 24, 2020 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.13

Jan 1, 2020 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.12

Dec 30, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

Changes in this version

type Context

+ SetLogger func(l Logger)

v4.1.11

Oct 7, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.10

Aug 17, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.9

Aug 11, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

Changes in this version

type Context

+ SetResponse func(r *Response)

v4.1.8

Aug 5, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.7

Aug 2, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

Changes in this version

+ const HeaderReferrerPolicy

v4.1.6

Jun 9, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

Changes in this version

+ const REPORT

v4.1.5

Apr 30, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.4

Apr 29, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.3

Apr 29, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.2

Apr 29, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

v4.1.1

Apr 29, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

Changes in this version

type Echo

+ func (e *Echo) Routers() map[string]*Router

v4.1.0

Apr 29, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

Changes in this version

+ const HeaderContentSecurityPolicyReportOnly

+ var ErrInvalidCertOrKeyType = errors.New("invalid cert or key type, must be string or []byte")

type Echo

+ func (e *Echo) Host(name string, m ...MiddlewareFunc) (g *Group)

v4.0.0

Jan 30, 2019 GO-2021-0051

GO-2021-0051: Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.

Changes in this version

+ const CONNECT

+ const DELETE

+ const GET

+ const HEAD

+ const HeaderAccept

+ const HeaderAcceptEncoding

+ const HeaderAccessControlAllowCredentials

+ const HeaderAccessControlAllowHeaders

+ const HeaderAccessControlAllowMethods

+ const HeaderAccessControlAllowOrigin

+ const HeaderAccessControlExposeHeaders