2 matches found
CLSA-2026-1775220180 nodejs: Fix of CVE-2023-45143
CVE-2023-45143: fix cookie and host header leak on cross-origin redirect in undici...
SUSE CVE-2022-39348
Twisted is an event-based framework for internet applications. Started with version 0.9.4, when the host header does not match a configured host twisted.web.vhost.NameVirtualHost will return a NoResource resource which renders the Host header unescaped into the 404 response allowing HTML and scri...