Lucene search
K

244 matches found

Cvelist
Cvelist
added 2026/05/13 3:20 p.m.31 views

CVE-2026-44431 urllib3: Sensitive headers forwarded across origins in proxied low-level redirects

urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API via ProxyManager.connectionfromurl.urlopen..., assertsamehost=False still forward these sensitive headers. This vulnerability is fixed in 2.7.0...

8.2CVSS0.00527EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/13 3:20 p.m.9 views

CVE-2026-44431 urllib3: Sensitive headers forwarded across origins in proxied low-level redirects

urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API via ProxyManager.connectionfromurl.urlopen..., assertsamehost=False still forward these sensitive headers. This vulnerability is fixed in 2.7.0...

8.2CVSS5.8AI score0.00527EPSS
Exploits0References1
OSV
OSV
added 2026/05/11 2:51 p.m.6 views

GHSA-QCCP-GFCP-XXVC urllib3: Sensitive headers forwarded across origins in proxied low-level redirects

Impact When following cross-origin redirects for requests made using urllib3’s high-level APIs, such as urllib3.request, PoolManager.request, and ProxyManager.request, sensitive headers — Authorization, Cookie, and Proxy-Authorization defined in Retry.DEFAULTREMOVEHEADERSONREDIRECT — are stripped...

8.2CVSS5.8AI score0.00527EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/05/11 2:51 p.m.11 views

urllib3: Sensitive headers forwarded across origins in proxied low-level redirects

Impact When following cross-origin redirects for requests made using urllib3’s high-level APIs, such as urllib3.request, PoolManager.request, and ProxyManager.request, sensitive headers — Authorization, Cookie, and Proxy-Authorization defined in Retry.DEFAULTREMOVEHEADERSONREDIRECT — are stripped...

8.2CVSS5.8AI score0.00527EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.8 views

PT-2026-39665

Name of the Vulnerable Software and Affected Versions urllib3 versions 1.23 through 2.6.x Description Sensitive headers, specifically Authorization, Cookie, and Proxy-Authorization, are forwarded during cross-origin redirects when using the low-level API via ProxyManager.connection from...

8.2CVSS5.8AI score0.00527EPSS
Exploits0References370
Snyk
Snyk
added 2026/05/04 7:26 p.m.7 views

Insertion of Sensitive Information Into Sent Data

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information Into Sent Data in the errors middleware process. An attacker can obtain sensitive authentication headers, such as Authorization and Cookie, by triggering a backend response that matches the configured...

6.9CVSS5.8AI score0.00445EPSS
Exploits1References2
Snyk
Snyk
added 2026/05/04 7:26 p.m.10 views

Insertion of Sensitive Information Into Sent Data

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information Into Sent Data in the errors middleware process. An attacker can obtain sensitive authentication headers, such as Authorization and Cookie, by triggering a backend response that matches the configured...

6.9CVSS5.8AI score0.00445EPSS
Exploits1References2
Snyk
Snyk
added 2026/05/04 7:26 p.m.8 views

Insertion of Sensitive Information Into Sent Data

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information Into Sent Data in the errors middleware process. An attacker can obtain sensitive authentication headers, such as Authorization and Cookie, by triggering a backend response that matches the configured...

6.9CVSS5.8AI score0.00445EPSS
Exploits1References2
Snyk
Snyk
added 2026/05/04 7:26 p.m.6 views

Insertion of Sensitive Information Into Sent Data

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information Into Sent Data in the errors middleware process. An attacker can obtain sensitive authentication headers, such as Authorization and Cookie, by triggering a backend response that matches the configured...

6.9CVSS5.8AI score0.00445EPSS
Exploits1References2
Snyk
Snyk
added 2026/04/14 1:11 a.m.4 views

Improper Removal of Sensitive Information Before Storage or Transfer

Overview Affected versions of this package are vulnerable to Improper Removal of Sensitive Information Before Storage or Transfer in the cross-domain redirects that do not strip custom authentication headers such as X-API-Key, X-Auth-Token, Api-Key, Token. An attacker can obtain sensitive...

7.7CVSS5.8AI score0.00486EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/23 10:53 a.m.7 views

CVE-2026-33180

A flaw was found in HAPI FHIR, a Java implementation of the HL7 FHIR standard. When the internal HTTP client follows redirects HTTP 30X response codes, it can inadvertently send sensitive HTTP headers, such as authentication tokens, to unintended third-party hosts. This information disclosure cou...

8.2CVSS5.7AI score0.00264EPSS
Exploits0References4
GitLab Advisory Database
GitLab Advisory Database
added 2026/03/18 12:0 a.m.8 views

HAPI FHIR HTTP authentication leak in redirects

When setting headers in HTTP requests, the internal HTTP client sends headers first to the host in the initial URL but also, if asked to follow redirects and a 30X HTTP response code is returned, to the host mentioned in URL in the Location: response header value. Sending the same set of headers ...

8.2CVSS5.9AI score0.00264EPSS
Exploits0References4
GitLab Advisory Database
GitLab Advisory Database
added 2026/03/18 12:0 a.m.8 views

HAPI FHIR HTTP authentication leak in redirects

When setting headers in HTTP requests, the internal HTTP client sends headers first to the host in the initial URL but also, if asked to follow redirects and a 30X HTTP response code is returned, to the host mentioned in URL in the Location: response header value. Sending the same set of headers ...

8.2CVSS5.9AI score0.00264EPSS
Exploits0References4
OSV
OSV
added 2026/03/16 8:49 p.m.7 views

GHSA-9W88-79F8-M3VP Permissive List of Allowed Inputs in ewe

Summary ewe's chunked transfer encoding trailer handling merges declared trailer fields into req.headers after body parsing, but the denylist only blocks 9 header names. Security-sensitive headers like authorization, cookie, and x-forwarded-for can be injected or overwritten by a malicious client...

5.3CVSS5.8AI score0.00386EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.8 views

PT-2026-26175

Summary ewe's chunked transfer encoding trailer handling merges declared trailer fields into req.headers after body parsing, but the denylist only blocks 9 header names. Security-sensitive headers like authorization, cookie, and x-forwarded-for can be injected or overwritten by a malicious client...

5.3CVSS5.9AI score0.00386EPSS
Exploits1References8
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.6 views

Traefik 安全漏洞

Traefik is an open-source reverse proxy and load balancing tool developed by Traefik. Versions 2.11.9 to 2.11.37, as well as 3.1.3 to 3.6.8, have security vulnerabilities. These vulnerabilities stem from improper handling of case sensitivity when processing Connection headers. This can allow...

7.5CVSS7.3AI score0.00467EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/27 7:29 a.m.4 views

CVE-2025-9907 Event-driven-ansible: event stream test mode exposes sensitive headers in aap eda

A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible EDA Event Stream API. This vulnerability allows exposure of sensitive client credentials and internal infrastructure headers via the testheaders field when an event stream is in test mode. The possible outcome...

6.7CVSS5.9AI score0.00167EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/02/27 7:29 a.m.21 views

CVE-2025-9907 Event-driven-ansible: event stream test mode exposes sensitive headers in aap eda

A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible EDA Event Stream API. This vulnerability allows exposure of sensitive client credentials and internal infrastructure headers via the testheaders field when an event stream is in test mode. The possible outcome...

6.7CVSS0.00167EPSS
Exploits0References6
OSV
OSV
added 2026/02/10 12:30 p.m.5 views

GHSA-GV3V-2CPP-3PMQ Keycloak logs sensitive headers

A flaw was found in Keycloak. When the logging format is configured to a verbose, user-supplied pattern such as the pre-defined 'long' pattern, sensitive headers including Authorization and Cookie are disclosed to the logs in cleartext. An attacker with read access to the log files can extract...

5CVSS5.8AI score0.00141EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2026/02/10 12:30 p.m.5 views

Keycloak logs sensitive headers

A flaw was found in Keycloak. When the logging format is configured to a verbose, user-supplied pattern such as the pre-defined 'long' pattern, sensitive headers including Authorization and Cookie are disclosed to the logs in cleartext. An attacker with read access to the log files can extract...

5CVSS5.8AI score0.00141EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder