39 matches found
Request Smuggling
fastify-reply-from is vulnerable to Request Smuggling. The vulnerability is due to the absence of a unified Content-Type parsing, unlike the majority of Fastify that uses fast-content-type-parse with trimming after split. This issue can be exploited by an attacker to bypass security checks,...
@fastify/reply-from JSON Content-Type parsing confusion
Impact The main repo of fastify use fast-content-type-parse to parse request Content-Type, which will trim after split. The fastify-reply-from have not use this repo to unify the parse of Content-Type, which won't trim. As a result, a reverse proxy server built with @fastify/reply-from could...
CVE-2023-51701 @fastify-reply-from JSON Content-Type parsing confusion
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with @fastify/reply-from could misinterpret the incoming body by passing an header ContentType: application/json ; charset=utf-8. This can lead to bypass of security checks...
CVE-2023-51701
CVE-2023-51701 affects fastify-reply-from, a Fastify plugin. The vulnerability arises when the plugin misinterprets the request body due to a Content-Type handling discrepancy (Content-Type header like application/json ; charset=utf-8), allowing bypass of security checks. References in multiple s...
CVE-2023-51701 @fastify-reply-from JSON Content-Type parsing confusion
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with @fastify/reply-from could misinterpret the incoming body by passing an header ContentType: application/json ; charset=utf-8. This can lead to bypass of security checks...
CVE-2023-51701 @fastify-reply-from JSON Content-Type parsing confusion
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with @fastify/reply-from could misinterpret the incoming body by passing an header ContentType: application/json ; charset=utf-8. This can lead to bypass of security checks...
Fastify Environmental Vulnerabilities
Fastify is an open source web framework for Node.js from the OpenJS Foundation. A security vulnerability exists in Fastify fastify-reply-from versions prior to 9.6.0, which stems from the fact that passing body text via header using fastify/reply-from may be misinterpreted, leading to bypassing...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.2.2 security and bug fix update
Red Hat Advanced Cluster Management for Kubernetes 2.2.2 General Availability release images, which fix several bugs and security issues. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...
CVE-2021-21321
A flaw was found in fastify-reply-from. Escaping of the prefix of the proxied backend service is possible allowing an attacker, using a specially crafted URL, to gain access to directories that would otherwise be out of bounds. The highest threat from this vulnerability is to data confidentiality...
Authorization Bypass
fastify-reply-from is vulnerable to authorization bypass. An attacker is able to escape the prefix of the proxied backend service and access restricted service such as the parent of the base URL...
Prefix escape
Overview In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server is /pub/, a user expect that accessing /priv on the target service would not be possible. Unfortunately, it is...
Prefix escape
Impact By crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server is /pub/, a user expect that accessing /priv on the target service would not be possible. Unfortunately, it is. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N...
@ddot/ddot-plugin-webpack (>=0.0.3 <=0.0.14), @harmonyjs/controller-auth-jwt (>=1.0.0 <=1.0.0-rc2.6) +15 more potentially affected by CVE-2021-21321 via fastify-reply-from (>=0.1.0 <=3.5.0)
fastify-reply-from NPM version =0.1.0, =0.0.3, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.0.1, =1.0.0-alpha.2, =1.0.1, =0.1.0, =0.1.0, =2.0.0, =0.2.0, =0.0.1, =0.0.6 and more Source cves: CVE-2021-21321 Source advisory: OSV:GHSA-QMW8-3V4G-GWJ4...
GHSA-QMW8-3V4G-GWJ4 Prefix escape
Impact By crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server is /pub/, a user expect that accessing /priv on the target service would not be possible. Unfortunately, it is. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N...
CVE-2021-21321
fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server i...
Design/Logic Flaw
fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server i...
CVE-2021-21321 Prefix escape
fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server i...
CVE-2021-21321
The CVE affects the npm package fastify-reply-from (a Fastify plugin used to forward requests to a backend). In versions prior to 4.0.2, a crafted URL could escape the proxied backend’s prefix (for example base URL /pub/), allowing access to resources that should be out of scope. Impact is data c...
fastify-reply-from 存在输入验证错误漏洞
Matteo Collina fastify-reply-from is Matteo Collina an open source application . It is used to forward the current http request to another server. A security vulnerability exists in fastify-reply-from before version 4.0.2, which can be exploited to escape the prefix of a proxy backend service by...