cve/CVE-2022-35252.md at f1f1f9a798d36fa0748d135c6fe5299cdbcc69fb

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-06-01 11:10:36 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing a"sister site" to deny service to all siblings.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/JtMotoX/docker-trivy
https://github.com/a23au/awe-base-images
https://github.com/fokypoky/places-list
https://github.com/holmes-py/reports-summary
https://github.com/karimhabush/cyberowl
https://github.com/stkcat/awe-base-images

1.0 KiB Raw Blame History

CVE-2022-35252

Description

POC

Reference

Github

1.0 KiB

Raw Blame History