317 matches found
Batched HTTP requests may set incorrect `cache-control` response header
Impact In Apollo Server 3 and 4, the cache-control HTTP response header may not reflect the cache policy that should apply to an HTTP request when that HTTP request contains multiple operations using HTTP batching. This could lead to data being inappropriately cached and shared. Apollo Server...
PT-2022-28222 · Unknown · Apollo Server
Name of the Vulnerable Software and Affected Versions: Apollo Server versions 3.0.0 through 3.10.0 Apollo Server versions 4.0.0 through 4.0.0 Description: The cache-control HTTP response header may not reflect the cache policy for HTTP requests with multiple operations using HTTP batching. This...
Information Disclosure
rdiffweb is vulnerable to information disclosure. The vulnerability exist in empty function in dispatch.py, which allows an unauthenticated attacker to view sensitive information due to improper cache control...
GHSA-7FQM-JM52-F9VC rdiffweb vulnerable to Use of Cache Containing Sensitive Information
rdiffweb prior to version 2.4.9 is vulnerable to Use of Cache Containing Sensitive Information. Due to improper cache control, an attacker can view sensitive information even if they are not logged into an account. Version 2.4.9 contains a patch for this issue...
PT-2022-21580 · Rdiffweb · Rdiffweb
Name of the Vulnerable Software and Affected Versions: rdiffweb versions prior to 2.4.9 Description: The issue concerns the use of cache containing sensitive information. Due to improper cache control, an attacker can view sensitive information even if they are not logged into an account...
img_auth.php may leak private extension images into the public cache
In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1.34.2, private wikis behind a caching server using the imgauth.php image authorization security feature may have had their files cached publicly, so any unauthorized user could view them. This occurs because...
GHSA-VM9C-39JX-Q45W Moodle vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy...
Glassdoor: Web Cache Poisoning leads to Stored XSS
@bombon reported to us a web cache poisoning issue that led to caching of gdTokenAnti-CSRF token across different Glassdoor pages and in some instances could be chained to perform XSS by caching the XSS payload. This has now been resolved using CF web cache armor and cache-control headers...
in publify/publify
Description publify does not use secure Cache-Control headers. Proof of Concept 1: Login to application 2: click on admin link https://demo-publify.herokuapp.com/admin 3: Logout 4: Press the back button of the opened tab to still see that you can view the information . Impact This issue is capabl...
in bookstackapp/bookstack
Description Bookstack does not use secure Cache-Control headers. Proof of Concept 1: Login to application 2: View a shelf 3: Logout 4: Press the back button of the opened tab to still see that you can view the information about books previous page of your shelf. Impact This issue is capable of...
in collectiveaccess/pawtucket2
Description With ref to this report: https://www.huntr.dev/bounties/9708c444-2cf2-4aed-8188-1dc7def05ba1/, should replicate over proper cache-control Proof of Concept Example of sensitive 1 Login to application dashboard 2 Go to lightbox page 3 Click logout. 4 Click go back button to see group...
Security Bulletin: Cache control vulnerability affects IBM Edge (CVE-2020-4805).
Summary IBM Edge is affected by a cache control vulnerability. IBM Edge has resolved this vulnerability. Vulnerability Details CVEID: CVE-2020-4805 DESCRIPTION: IBM Edge allows web pages to be stored locally which can be read by another user on the system. CVSS Base score: 4 CVSS Temporal Score:...
Security Bulletin: Cache control vulnerability affects IBM Edge (CVE-2020-4803).
Summary IBM Edge is affected by a cache control vulnerability. IBM Edge has resolved this vulnerability. Vulnerability Details CVEID: CVE-2020-4803 DESCRIPTION: IBM Edge allows web pages to be stored locally which can be read by another user on the system. CVSS Base score: 4 CVSS Temporal Score:...
Targeted Cache Control
Content delivery networks CDNs have been around and have evolved over a long time in internet years. They all speak HTTP and you can safely rely on them to work with just about anything else that speaks HTTP. This is the beauty of standards -- HTTP in this case. What you cannot count on is there...
Targeted Cache Control
Content delivery networks CDNs have been around and have evolved over a long time in internet years. They all speak HTTP and you can safely rely on them to work with just about anything else that speaks HTTP...
Squid 缓冲区错误漏洞
Squid is a caching and forwarding HTTP web proxy. Squid suffers from a WCCP protocol data out-of-bounds read vulnerability. An attacker could exploit this vulnerability to obtain information...
Design/Logic Flaw
An issue was discovered in Xen 4.9 through 4.14.x. On Arm, a guest is allowed to control whether memory accesses are bypassing the cache. This means that Xen needs to ensure that all writes such as the ones during scrubbing have reached the memory before handing over the page to a guest...
CVE-2021-26933
An issue was discovered in Xen 4.9 through 4.14.x. On Arm, a guest is allowed to control whether memory accesses are bypassing the cache. This means that Xen needs to ensure that all writes such as the ones during scrubbing have reached the memory before handing over the page to a guest...
CVE-2021-26933
CVE-2021-26933 affects the Xen hypervisor (Xen 4.9–4.14.x) on ARM: a guest can influence cache-bypass behavior, and cache-cleaning may occur before scrub verification, so there is no guarantee that all writes have reached memory before handing the page to the guest. The practical consequence is p...
MediaWiki Information Disclosure Vulnerability (Jun 2020) - Windows
MediaWiki is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...