Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

83 matches found

OSV
OSVadded 2026/05/18 1:40 p.m.0 views

GHSA-M675-2P33-XV9G Caddy: Unsafe Unicode Handling in FastCGI splitPos Allows Execution of Non-PHP Files

Summary The FastCGI transport's splitPos in modules/caddyhttp/reverseproxy/fastcgi/fastcgi.go misuses golang.org/x/text/search with search.IgnoreCase when the request path contains a non-ASCII byte. Two distinct flaws in that fallback let an attacker mislead Caddy's FastCGI splitting into treatin...

8.1CVSS6.5AI score
Exploits0References4
OSV
OSVadded 2026/03/10 6:28 p.m.0 views

GO-2026-4644 Caddy's vars_regexp double-expands user input, leaking env vars and files in github.com/caddyserver/caddy

Caddy's varsregexp double-expands user input, leaking env vars and files in github.com/caddyserver/caddy...

7.5CVSS5.8AI score0.00021EPSS
Exploits1References3
SUSE CVE
SUSE CVEadded 2026/03/10 12:24 a.m.0 views

SUSE CVE-2026-30851

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forwardauth copyheaders does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2...

8.8CVSS5.7AI score0.00023EPSS
Exploits1References4
SUSE CVE
SUSE CVEadded 2026/03/10 12:24 a.m.1 views

SUSE CVE-2026-30852

Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before version 2.11.2, the varsregexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When varsregexp matches against a placeholder like http.request.header.X-Input, the...

7.5CVSS5.7AI score0.00021EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2026/03/10 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2026-30852

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before version 2.11.2, the varsregexp matcher in vars.go:337 double-expan...

7.5CVSS7.2AI score0.00021EPSS
Exploits1References2
NVD
NVDadded 2026/03/07 5:15 p.m.3 views

CVE-2026-30851

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forwardauth copyheaders does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2...

8.8CVSS0.00023EPSS
Exploits1References4
UbuntuCve
UbuntuCveadded 2026/03/07 5:15 p.m.1 views

CVE-2026-30851

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forwardauth copyheaders does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2...

8.8CVSS7AI score0.00023EPSS
Exploits1References5
UbuntuCve
UbuntuCveadded 2026/03/07 5:15 p.m.0 views

CVE-2026-30852

Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before version 2.11.2, the varsregexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When varsregexp matches against a placeholder like http.request.header.X-Input, the...

7.5CVSS7AI score0.00021EPSS
Exploits1References4
OSV
OSVadded 2026/03/07 5:15 p.m.1 views

UBUNTU-CVE-2026-30851

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forwardauth copyheaders does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2...

8.8CVSS5.7AI score0.00023EPSS
Exploits1References6
ATTACKERKB
ATTACKERKBadded 2026/03/07 4:28 p.m.0 views

CVE-2026-30851

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forwardauth copyheaders does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2...

8.1CVSS5.7AI score0.00023EPSS
Exploits1References5Affected Software1
CVE
CVEadded 2026/03/07 4:28 p.m.3 views

CVE-2026-30851

The CVE-2026-30851 entry is linked to a concrete vulnerability in Caddy v2, specifically the forward_auth copy_headers behavior in modules/caddyhttp/reverseproxy/forwardauth/caddyfile.go. The root cause is a regression where client-supplied headers listed in copy_headers could survive when the up...

8.8CVSS5.7AI score0.00023EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVEadded 2026/03/07 4:28 p.m.2 views

CVE-2026-30851

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forwardauth copyheaders does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2...

8.8CVSS7.7AI score0.00023EPSS
Exploits1
Cvelist
Cvelistadded 2026/03/07 4:28 p.m.26 views

CVE-2026-30851 Caddy forward_auth copy_headers Does Not Strip Client-Supplied Headers, Allowing Identity Injection and Privilege Escalation

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forwardauth copyheaders does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2...

8.1CVSS0.00023EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/03/07 4:28 p.m.2 views

CVE-2026-30852

Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before version 2.11.2, the varsregexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When varsregexp matches against a placeholder like http.request.header.X-Input, the...

6.9CVSS5.7AI score0.00021EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVEadded 2026/03/07 4:28 p.m.3 views

CVE-2026-30852

Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before version 2.11.2, the varsregexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When varsregexp matches against a placeholder like http.request.header.X-Input, the...

7.5CVSS7.7AI score0.00021EPSS
Exploits1
AlpineLinux
AlpineLinuxadded 2026/03/07 4:28 p.m.0 views

CVE-2026-30852

Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before version 2.11.2, the varsregexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When varsregexp matches against a placeholder like http.request.header.X-Input, the...

7.5CVSS5.7AI score0.00021EPSS
Exploits1
OSV
OSVadded 2026/03/06 11:40 p.m.0 views

GHSA-M2W3-8F23-HXXF Caddy's vars_regexp double-expands user input, leaking env vars and files

Summary The varsregexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When varsregexp matches against a placeholder like http.request.header.X-Input, the header value gets resolved once expected, then passed through repl.ReplaceAll again the bug. This mean...

6.9CVSS5.8AI score0.00021EPSS
Exploits1References5
Snyk
Snykadded 2026/03/06 11:38 p.m.1 views

Header Injection

Overview Affected versions of this package are vulnerable to Header Injection in the parseCaddyfile function. An attacker can inject arbitrary values into trusted identity headers by supplying crafted HTTP headers when authenticated with a valid token, leading to unauthorized privilege escalation...

8.8CVSS5.9AI score0.00023EPSS
Exploits1References2
Snyk
Snykadded 2026/03/06 11:38 p.m.1 views

Header Injection

Overview Affected versions of this package are vulnerable to Header Injection in the parseCaddyfile function. An attacker can inject arbitrary values into trusted identity headers by supplying crafted HTTP headers when authenticated with a valid token, leading to unauthorized privilege escalation...

8.8CVSS5.9AI score0.00023EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2026/02/28 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-27588

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, Caddy's HTTP host request matcher is documented as case-insensitive, b...

9.1CVSS5.8AI score0.00062EPSS
Exploits1References3
Rows per page
Query Builder