4 matches found
CVE-2021-29479
Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, a user supplied X-Forwarded-Host header can be used to perform cache poisoning of a cache fronting a Ratpack server if the cache key does not include the X-Forwarded-Host header as a cache key. Users are only vulnerab...
Design/Logic Flaw
Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, a user supplied X-Forwarded-Host header can be used to perform cache poisoning of a cache fronting a Ratpack server if the cache key does not include the X-Forwarded-Host header as a cache key. Users are only vulnerab...
CVE-2021-29479 Cached redirect poisoning via X-Forwarded-Host header
Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, a user supplied X-Forwarded-Host header can be used to perform cache poisoning of a cache fronting a Ratpack server if the cache key does not include the X-Forwarded-Host header as a cache key. Users are only vulnerab...
CVE-2021-29479
Summary: Ratpack before 1.9.0 is vulnerable to cache poisoning via the X-Forwarded-Host header. If the cache key does not include X-Forwarded-Host and a custom PublicAddress is not configured, Ratpackās default inferring PublicAddress can be exploited to redirect cached responses to an attacker s...