Описание
A vulnerability was identified in MediaCrush 1.0.0/1.0.1. The affected element is an unknown function of the file /mediacrush/paths.py of the component Header Handler. Such manipulation of the argument Host leads to improper neutralization of http headers for scripting syntax. The attack can be launched remotely.
EPSS
Процентиль: 18%
0.00056
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-644
Связанные уязвимости
CVSS3: 7.3
github
2 месяца назад
A vulnerability was identified in MediaCrush 1.0.0/1.0.1. The affected element is an unknown function of the file /mediacrush/paths.py of the component Header Handler. Such manipulation of the argument Host leads to improper neutralization of http headers for scripting syntax. The attack can be launched remotely.
EPSS
Процентиль: 18%
0.00056
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-644