Lura和KrakenD 安全漏洞

Lura is Lura Project open source an ultra-high-performance API gateway and middleware assembled together open framework.KrakenD is KrakenD open source a scalable ultra-high-performance API gateway. Helps you easily adopt microservices and secure communications. A security vulnerability exists in...

PT-2022-13961 · Unknown +1 · Krakend-Ce +2

Name of the Vulnerable Software and Affected Versions: Lura versions prior to 2.0.2 KrakenD-CE versions prior to 2.0.2 KrakenD-EE versions prior to 2.0.0 Description: The issue arises from incorrect sanitization of URL parameters, allowing malicious users to alter the backend URL defined for a pi...