7 matches found
K000149883: PSR-7 header validation vulnerability CVE-2023-30536
Security Advisory Description slim/psr7 is a PSR-7 implementation for use with Slim 4. In versions prior to 1.6.1 an attacker could sneak in a newline \n into both the header names and values. While the specification states that \r\n\r\n is used to terminate the header list, many servers in the...
Fedora: Security Advisory (FEDORA-2025-c17ef0f176)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-30536
creationtimestamp| type| source ---|---|--- 2023-04-18 02:28:41+00:00| seen| https://t.me/cibsecurity/62316...
DEBIAN-CVE-2023-30536
slim/psr7 is a PSR-7 implementation for use with Slim 4. In versions prior to 1.6.1 an attacker could sneak in a newline \n into both the header names and values. While the specification states that \r\n\r\n is used to terminate the header list, many servers in the wild will also accept \n\n. An...
CVE-2023-30536 Insecure header validation in slim/psr7
slim/psr7 is a PSR-7 implementation for use with Slim 4. In versions prior to 1.6.1 an attacker could sneak in a newline \n into both the header names and values. While the specification states that \r\n\r\n is used to terminate the header list, many servers in the wild will also accept \n\n. An...
CVE-2023-30536
CVE-2023-30536 affects slim/psr7 (Slim-Psr7) before 1.6.1, where an attacker controlling header names can inject a newline character into header names and values, potentially producing malformed HTTP messages and causing application errors or a DoS via a remote service firewall. The issue is reso...
CVE-2023-30536 Insecure header validation in slim/psr7
slim/psr7 is a PSR-7 implementation for use with Slim 4. In versions prior to 1.6.1 an attacker could sneak in a newline \n into both the header names and values. While the specification states that \r\n\r\n is used to terminate the header list, many servers in the wild will also accept \n\n. An...