Login Sign Up

Gofiber Security Vulnerabilities (CVEs)

Track 8 security vulnerabilities affecting Gofiber products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

5 Critical
3 High
🔔 Get Alerts for Gofiber
CVE-2026-25899 7.5

CVE-2026-25899 is a memory exhaustion vulnerability in GoFiber v3 web framework where a specially crafted 10-character cookie value triggers unvalidat...

Feb 24, 2026
CVE-2026-25891 7.5

A path traversal vulnerability in Fiber's static middleware on Windows allows remote attackers to bypass sanitization and read arbitrary files from th...

Feb 24, 2026
CVE-2025-66630 9.4

Fiber web framework versions before 2.52.11 on Go versions prior to 1.24 may generate predictable UUIDs when crypto/rand fails to obtain secure random...

Feb 9, 2026
CVE-2025-66565 9.8

A critical vulnerability in Fiber Utils library versions 2.0.0-rc.3 and below causes predictable UUID generation when the system's cryptographic rando...

Dec 9, 2025
CVE-2025-48075 7.5

A denial-of-service vulnerability in Go's Fiber web framework allows attackers to crash applications by sending specially crafted requests with negati...

May 22, 2025
CVE-2024-38513 10.0

This vulnerability in GoFiber's session middleware allows attackers to supply their own session_id, enabling session fixation attacks and unauthorized...

Jul 1, 2024
CVE-2024-22199 9.3

CVE-2024-22199 is a cross-site scripting (XSS) vulnerability in the gofiber/template package that allows attackers to execute malicious scripts in use...

Jan 11, 2024
CVE-2023-45128 10.0

This CVE describes a critical CSRF vulnerability in the Fiber web framework for Go that allows attackers to forge malicious requests on behalf of user...

Oct 16, 2023

Why Monitor Gofiber Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 8+ known vulnerabilities affecting Gofiber products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Gofiber packages in under 60 seconds. No agents required - completely agentless scanning that works across Gofiber deployments.

Free vulnerability database: Access detailed information about every Gofiber CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

  • Register free account & add your servers
  • Run one-time scan or schedule automatic monitoring (every 1-24 hours)
  • Receive instant alerts when new Gofiber CVEs affect your systems
  • Access dashboard with severity breakdown & fix instructions
Start Monitoring Gofiber CVEs Free