Julia URIs.jl 注入漏洞

Julia URIs.jl is a Julia open source library for Julia. An injection vulnerability exists in Julia URIs.jl versions prior to 1.6.0 and HTTP.jl versions prior to 1.10.17, which stems from allowing the construction of URIs containing CRLF characters, potentially leading to a CRLF injection attack...

CVE-2020-10427

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-languages.php by adding a question mark ? followed by the payload...

CVE-2018-16552

MicroPyramid Django-CRM 0.2 allows CSRF for /users/create/, /users//edit/, and /accounts//delete/ URIs...