Lucene search
+L

5 matches found

NVD
NVD
added 2023/01/20 8:15 p.m.40 views

CVE-2022-3918

A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF injection in URLRequest headers. In this vulnerability, a client can insert one or several CRLF sequences into a URLRequest header value. When that request is sent via URLSession to an HTTP server,...

8.8CVSS8.8AI score0.00779EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/01/20 12:0 a.m.6 views

CVE-2022-3918

A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF injection in URLRequest headers. In this vulnerability, a client can insert one or several CRLF sequences into a URLRequest header value. When that request is sent via URLSession to an HTTP server,...

7.2AI score0.00779EPSS
Exploits0References1
OSV
OSV
added 2021/02/23 8:15 a.m.14 views

CVE-2020-13697

An issue was discovered in RouterNanoHTTPD.java in NanoHTTPD through 2.3.1. The GeneralHandler class implements a basic GET handler that prints debug information as an HTML page. Any web server that extends this class without implementing its own GET handler is vulnerable to reflected XSS, becaus...

6.1CVSS6.2AI score
Exploits0References2
Prion
Prion
added 2018/06/07 2:29 a.m.21 views

Improper access control

The safe-eval module describes itself as a safer version of eval. By accessing the object constructors, un-sanitized user input can access the entire standard library and effectively break out of the sandbox...

10CVSS9.4AI score0.03494EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/06/07 2:0 a.m.33 views

CVE-2017-16088

The safe-eval module describes itself as a safer version of eval. By accessing the object constructors, un-sanitized user input can access the entire standard library and effectively break out of the sandbox...

9.5AI score0.03494EPSS
Exploits0References3
Rows per page
Query Builder