The default Formatter for the Logger middleware (LoggerConfig.Formatter), which is included in the Default engine, allows attackers to inject arbitrary log entries by manipulating the request path.
github.com/gin-gonic/gin
{ "imports": [ { "symbols": [ "defaultLogFormatter" ], "path": "github.com/gin-gonic/gin" } ] }
{ "url": "https://pkg.go.dev/vuln/GO-2020-0001" }