CVE-2026-2833

An HTTP request smuggling vulnerability CWE-444 was found in Pingora's handling of HTTP/1.1 connection upgrades. The issue occurs when a Pingora proxy reads a request containing an Upgrade header, causing the proxy to pass through the rest of the bytes on the connection to a backend before the...

EUVD-2022-47981

Malicious code in bioql PyPI...

Trellix Enterprise Security Manager 安全漏洞

Trellix Enterprise Security Manager Trellix ESM is an application from American FireEye Trellix, Inc. Used for real-time monitoring and analysis enables you to quickly prioritize, investigate and respond to hidden threats. A security vulnerability exists in Trellix Enterprise Security Manager...

Containous Traefik Input Validation Error Vulnerability

Containous Traefik is a reverse proxy and load balancer from US-based Containous. An input validation error vulnerability exists in Traefik v2.10.5 and earlier, v3.0.0-beta4 and earlier, which stems from the fact that when a request with a URL fragment is sent to Traefik, Traefik automatically...

ALPINE-CVE-2022-45059

An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish Cache servers from forwarding critical headers to the backend...