Описание
All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | not-affected | 1.0.3-2 |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | not-affected | 1.0.3-2 |
| esm-apps/jammy | not-affected | 1.0.3-2 |
| esm-apps/noble | not-affected | 1.0.3-2 |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | released | 0.8.0-1+deb8u1build0.14.04.1~esm1 |
Показывать по
5.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control.
All versions of the HTTPie package prior to version 1.0.3 are vulnerab ...
5.8 Medium
CVSS2
8.8 High
CVSS3