Lucene search
GitHub Advisory DatabaseGHSA-9895-G6X5-XWCPHistoryDec 06, 2022 - 9:30 p.m.
Quarkus CORS filter allows simple GET and POST requests with an invalid Origin to proceed
2022-12-0621:30:46
CWE-285
GitHub Advisory Database
github.com
15
0.002 Low
EPSS
Percentile
56.8%
Quarkus CORS filter allows simple GET and POST requests with invalid Origin to proceed. Simple GET or POST requests made with XMLHttpRequest are the ones which have no event listeners registered on the object returned by the XMLHttpRequest upload property and have no ReadableStream object used in the request.
| CPE | Name | Operator | Version |
|---|---|---|---|
| io.quarkus:quarkus-vertx-http | lt | 2.13.5.Final | |
| io.quarkus:quarkus-vertx-http | lt | 2.14.2.Final |
Related
osv
osv
Quarkus CORS filter allows simple GET and POST requests with an invalid Origin to proceed
2022-12-06 21:30:46
CVE-2022-4147
2022-12-06 19:15:10
cve
cve
CVE-2022-4147
2022-12-06 19:15:00
veracode
veracode
Cross-Origin Resource Sharing (CORS)
2022-12-08 03:39:15
prion
prion
Cross site request forgery (csrf)
2022-12-06 19:15:00
redhatcve
redhatcve
CVE-2022-4147
2022-11-28 08:56:00
cvelist
cvelist
CVE-2022-4147
2022-12-06 00:00:00
redhat
redhat
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs
2023-01-26 10:16:23
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00