CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

GHSA-59qp-cfj3-rp64: netfoil has a domain name filter bypass via multiple questions

medium
Summary Potential bypass of domain name filter by crafting a DNS request with multiple questions, with the first question being legitimate. Impact Depends on a local attackers ability to craft multiple questions and the remote DoH server supporting them.

Details

Source
GitHub Security Advisories (INTL · database · site)
Severity
medium
Published
2026-07-07
Last updated
2026-07-07
Exploitation
Not in CISA KEV at last sync

Original advisory: https://github.com/advisories/GHSA-59qp-cfj3-rp64

More from GitHub Security Advisories