CVE-2025-5247

Name of the Vulnerable Software and Affected Versions Gowabby HFish version 0.1

Description A critical issue has been found in Gowabby HFish, affecting the LoadUrl function of the file viewurl.go. The manipulation of the argument r leads to improper authentication. This issue can be exploited remotely.

Recommendations For version 0.1, consider disabling the LoadUrl function until a patch is available to prevent improper authentication. Restrict access to the viewurl.go file to minimize the risk of exploitation. Avoid using the argument r in the affected function until the issue is resolved.