CVE-2022-24737 Exposure of Sensitive Information to an Unauthorized Actor in httpie

HTTPie is a command-line HTTP client. HTTPie has the practical concept of sessions, which help users to persistently store some of the state that belongs to the outgoing requests and incoming responses on the disk for further usage. Before 3.1.0, HTTPie didn‘t distinguish between cookies and host...

py-httpie -- exposure of sensitive information vulnerabilities

Glyph reports: HTTPie is a command-line HTTP client. HTTPie has the practical concept of sessions, which help users to persistently store some of the state that belongs to the outgoing requests and incoming responses on the disk for further usage. Before 3.1.0, HTTPie didn't distinguish between...

PT-2022-16839 · Httpie +1 · Httpie +1

Name of the Vulnerable Software and Affected Versions: HTTPie versions prior to 3.1.0 Description: HTTPie is a command-line HTTP client that stores some of the state that belongs to the outgoing requests and incoming responses on the disk for further usage through its concept of sessions. Before...

HTTPie 信息泄露漏洞

HTTPie is a command line HTTP client. An information disclosure vulnerability exists in HTTPie, which stems from the product's didna not being able to distinguish between hosts to which a cookie belongs. This vulnerability can be exploited to cause cookie disclosure. The following products and...

Mageia: Security Advisory (MGASA-2019-0351)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for httpie (openSUSE-SU-2019:2050-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Updated httpie packages fix security vulnerability

Updated httpie packages fix security vulnerability: HTTPie is vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or her control...

MGASA-2019-0351 Updated httpie packages fix security vulnerability

Updated httpie packages fix security vulnerability: HTTPie is vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or her control...

Debian DLA-1937-1 : httpie security update

An open redirect, that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control, was found and reported in CVE-2019-10751. This was patched upstream an...

Debian: Security Advisory (DLA-1937-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 1937-1] httpie security update

Package : httpie Version : 0.8.0-1+deb8u1 CVE ID : CVE-2019-10751 Debian Bug : 940058 An open redirect, that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his o...

DLA-1937-1 httpie - security update

Bulletin has no description...

OPENSUSE-SU-2019:2089-1 Security update for httpie

This update for httpie fixes the following issues: httpie was updated to version 1.0.3: Fix CVE-2019-10751 HTTPie is vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a...

Security update for httpie (moderate)

openSUSE Security Update: Security update for httpie Announcement ID: openSUSE-SU-2019:2089-1 Rating: moderate References: 1148466 Cross-References: CVE-2019-10751 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update fo...

openSUSE Security Update : httpie (openSUSE-2019-2050)

This update for httpie fixes the following issues : httpie was updated to version 1.0.3 : - Fix CVE-2019-10751 HTTPie is volnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP t...

OPENSUSE-SU-2019:2050-1 Security update for httpie

This update for httpie fixes the following issues: httpie was updated to version 1.0.3: Fix CVE-2019-10751 HTTPie is volnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a...

Security update for httpie (moderate)

openSUSE Security Update: Security update for httpie Announcement ID: openSUSE-SU-2019:2050-1 Rating: moderate References: 1148466 Cross-References: CVE-2019-10751 Affected Products: openSUSE Leap 15.1 openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available...

Open Redirect in httpie

All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control...

GHSA-XJJG-VMW6-C2P9 Open Redirect in httpie

All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control...

Open Redirection

HTTPie is vulnerable to open redirection. An attacker is able to redirect a request to an arbitrary URL due to the way an output filename is generated when --download without --output results in a redirect...