cve/CVE-2022-25881.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio 6100550298 Update CVE sources 2024-06-22 09:37

2024-06-22 09:37:59 +00:00

1.1 KiB

Raw Permalink Blame History

CVE-2022-25881

Description

This affects versions of the package http-cache-semantics before 4.1.1. The issue can be exploited via malicious request header values sent to a server, when that server reads the cache policy from the request using this library.

POC

Reference

https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-3253332
https://security.snyk.io/vuln/SNYK-JS-HTTPCACHESEMANTICS-3248783

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/mhc-cs/cs-316-project-primespiders
https://github.com/seal-community/patches
https://github.com/trong0dn/eth-todo-list

1.1 KiB Raw Permalink Blame History

CVE-2022-25881

Description

POC

Reference

Github

1.1 KiB

Raw Permalink Blame History