Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:1 a.m.7 views

CVE-2022-24719

Fluture-Node is a FP-style HTTP and streaming utils for Node based on Fluture. Using followRedirects or followRedirectsWith with any of the redirection strategies built into fluture-node 4.0.0 or 4.0.1, paired with a request that includes confidential headers such as Authorization or Cookie,...

6.1CVSS6.8AI score0.00815EPSS
Exploits0References1
Circl
Circl
added 2022/03/02 12:24 a.m.6 views

CVE-2022-24719

creationtimestamp| type| source ---|---|--- 2022-03-02 00:24:37+00:00| seen| https://t.me/cibsecurity/38285 2025-04-23 19:05:12+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13117...

6.1CVSS6AI score0.00815EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/03/01 8:20 p.m.5 views

CVE-2022-24719 Unauthorized forwarding of confidential headers in fluture-node

Fluture-Node is a FP-style HTTP and streaming utils for Node based on Fluture. Using followRedirects or followRedirectsWith with any of the redirection strategies built into fluture-node 4.0.0 or 4.0.1, paired with a request that includes confidential headers such as Authorization or Cookie,...

2.6CVSS6.3AI score0.00815EPSS
Exploits0References4
CVE
CVE
added 2022/03/01 8:20 p.m.103 views

CVE-2022-24719

CVE-2022-24719 affects Fluture-Node. The vulnerability arises when using followRedirects or followRedirectsWith with redirection strategies in fluture-node 4.0.0/4.0.1, where confidential headers (Authorization, Cookie) can be exposed in a redirected request to a third‑party or HTTP origin. The i...

6.1CVSS5AI score0.00815EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder