CVE-2023-24540 Information

Description

Not all valid JavaScript whitespace characters are considered to be whitespace. Templates containing whitespace characters outside of the character set \ \n\f\r\u0020\u2028\u2029\ in JavaScript contexts that also contain actions may not be properly sanitized during execution.

Reference

https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU https://go.dev/issue/59721 https://go.dev/cl/491616 https://pkg.go.dev/vuln/GO-2023-1752