Lucene search

K
osvGoogleOSV:PYSEC-2014-28
HistorySep 30, 2014 - 2:55 p.m.

PYSEC-2014-28

2014-09-3014:55:00
Google
osv.dev
6

0.012 Low

EPSS

Percentile

85.0%

ZPublisher.HTTPRequest._scrubHeader in Zope 2 before 2.13.19, as used in Plone before 4.3 beta 1, allows remote attackers to inject arbitrary HTTP headers via a linefeed (LF) character.

Rows per page:
1-10 of 641