2 matches found
libsoup 环境问题漏洞
Libsoup is a GNOME project’s HTTP client/server library. Libsoup has an environmental issue vulnerability, which stems from non-RFC-compatible parsing of incorrect block headers in the soupfilterinputstreamreadline logic. This vulnerability may lead to HTTP requests carrying malicious payloads an...
CVE-2023-40167
A flaw was found in Jetty that permits a plus sign + preceding the content-length value in a HTTP/1 header field, which is non-standard and more permissive than RFC. This issue could allow an attacker to request smuggling in conjunction with a server that does not close connections after 400...