EUVD-2019-0060

Malware in sbrugna...

EUVD-2023-0095

Malicious code in bioql PyPI...

OESA-2025-2358 python-httpie security update

HTTPie pronounced aitch-tee-tee-pie is a command-line HTTP client. Its goal is to make CLI interaction with web services as human-friendly as possible. HTTPie is designed for testing, debugging, and generally interacting with APIs HTTP servers. The http https commands allow for creating and sendi...

OESA-2025-2357 python-httpie security update

HTTPie pronounced aitch-tee-tee-pie is a command-line HTTP client. Its goal is to make CLI interaction with web services as human-friendly as possible. HTTPie is designed for testing, debugging, and generally interacting with APIs HTTP servers. The http https commands allow for creating and sendi...

OESA-2025-2356 python-httpie security update

HTTPie pronounced aitch-tee-tee-pie is a command-line HTTP client. Its goal is to make CLI interaction with web services as human-friendly as possible. HTTPie is designed for testing, debugging, and generally interacting with APIs HTTP servers. The http https commands allow for creating and sendi...

Linux Distros Unpatched Vulnerability : CVE-2023-48052

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...

Linux Distros Unpatched Vulnerability : CVE-2019-10751

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied...

TencentOS Server 4: httpie (TSSA-2025:0297)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0297 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

Linux Distros Unpatched Vulnerability : CVE-2022-24737

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTTPie is a command-line HTTP client. HTTPie has the practical concept of sessions, which help users to persistently store some of the state that belongs to the...

OPENSUSE-SU-2024:10849-1 httpie-2.5.0-1.2 on GA media

These are all security issues fixed in the httpie-2.5.0-1.2 package on the GA media of openSUSE Tumbleweed...

SUSE CVE-2022-24737

HTTPie is a command-line HTTP client. HTTPie has the practical concept of sessions, which help users to persistently store some of the state that belongs to the outgoing requests and incoming responses on the disk for further usage. Before 3.1.0, HTTPie didn't distinguish between cookies and host...

SUSE CVE-2023-48052

Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...

Man-in-the-Middle

httpie is vulnerable to Man-in-the-Middle attacks. The vulnerability exists due to the use of urllib3.disablewarnings in client.py, which does not properly enforce hostname verification or certificate validation. This means that HTTPS warnings, crucial for debugging and security awareness, are no...

HTTPie allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack

Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...

dalineunit (>=0.0.31 <=0.0.69), encapsia-cli (>=0.1.8 <=0.5.1) +7 more potentially affected by CVE-2023-48052 via httpie (>=1.0.3 <=3.2.2)

httpie PYPI version =1.0.3, =0.0.31, =0.1.8, =0.0.14, =1.0.0, =2.0.0, =1.3.21, =1.9.24 - veracode-api-signing =21.3.0 Source cves: CVE-2023-48052 Source advisory: OSV:GHSA-8R96-8889-QG2X...

GHSA-8R96-8889-QG2X HTTPie allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack

Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...

GHSA-8R96-8889-QG2X vulnerabilities

Vulnerabilities for packages: httpie...

GHSA-8R96-8889-QG2X vulnerabilities

Vulnerabilities for packages: httpie...

CVE-2023-48052

Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...

DEBIAN-CVE-2023-48052

Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...