Количество 75
Количество 75
CVE-2020-26137
urllib3 before 1.25.9 allows CRLF injection if the attacker controls t ...
CVE-2020-26116
http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.
CVE-2020-26116
http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.
CVE-2020-26116
http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.
CVE-2020-26116
http.client in Python 3.x before 3.5.10 3.6.x before 3.6.12 3.7.x before 3.7.9 and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.
CVE-2020-26116
http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x be ...
openSUSE-SU-2022:0803-1
Security update for python-lxml
SUSE-SU-2022:0895-1
Security update for python-lxml
SUSE-SU-2022:0803-1
Security update for python-lxml
openSUSE-SU-2021:2817-1
Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3
openSUSE-SU-2021:1206-1
Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3
openSUSE-SU-2020:2282-1
Security update for python-urllib3
openSUSE-SU-2020:2237-1
Security update for python-urllib3
SUSE-SU-2021:3251-1
Security update for python-urllib3
SUSE-SU-2021:2817-1
Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3
SUSE-SU-2020:3723-1
Security update for python-urllib3
RLSA-2021:1631
Moderate: python-urllib3 security update
GHSA-wqvq-5m8c-6g24
CRLF injection in urllib3
ELSA-2021-1631
ELSA-2021-1631: python-urllib3 security update (MODERATE)
BDU:2021-05230
Уязвимость модуля urllib3 интерпретатора языка программирования Python, связанная с недостаточной нейтрализацией специальных элементов в запросе, позволяющая нарушителю получить доступ к конфиденциальным данным и нарушить их целостность
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| CVE-2020-26137 urllib3 before 1.25.9 allows CRLF injection if the attacker controls t ... | CVSS3: 6.5 | 0% Низкий | около 5 лет назад |
 | CVE-2020-26116 http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. | CVSS3: 7.2 | 1% Низкий | около 5 лет назад |
 | CVE-2020-26116 http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. | CVSS3: 6.5 | 1% Низкий | больше 5 лет назад |
 | CVE-2020-26116 http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. | CVSS3: 7.2 | 1% Низкий | около 5 лет назад |
 | CVE-2020-26116 http.client in Python 3.x before 3.5.10 3.6.x before 3.6.12 3.7.x before 3.7.9 and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. | CVSS3: 7.2 | 1% Низкий | почти 5 лет назад |
| CVE-2020-26116 http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x be ... | CVSS3: 7.2 | 1% Низкий | около 5 лет назад |
 | openSUSE-SU-2022:0803-1 Security update for python-lxml | больше 3 лет назад | ||
| SUSE-SU-2022:0895-1 Security update for python-lxml | больше 3 лет назад | ||
| SUSE-SU-2022:0803-1 Security update for python-lxml | больше 3 лет назад | ||
| openSUSE-SU-2021:2817-1 Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 | 0% Низкий | около 4 лет назад | |
| openSUSE-SU-2021:1206-1 Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 | 0% Низкий | около 4 лет назад | |
| openSUSE-SU-2020:2282-1 Security update for python-urllib3 | 0% Низкий | почти 5 лет назад | |
| openSUSE-SU-2020:2237-1 Security update for python-urllib3 | 0% Низкий | почти 5 лет назад | |
| SUSE-SU-2021:3251-1 Security update for python-urllib3 | 0% Низкий | около 4 лет назад | |
| SUSE-SU-2021:2817-1 Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 | 0% Низкий | около 4 лет назад | |
| SUSE-SU-2020:3723-1 Security update for python-urllib3 | 0% Низкий | почти 5 лет назад | |
 | RLSA-2021:1631 Moderate: python-urllib3 security update | 0% Низкий | больше 4 лет назад | |
| GHSA-wqvq-5m8c-6g24 CRLF injection in urllib3 | CVSS3: 6.5 | 0% Низкий | больше 4 лет назад |
| ELSA-2021-1631 ELSA-2021-1631: python-urllib3 security update (MODERATE) | больше 4 лет назад | ||
 | BDU:2021-05230 Уязвимость модуля urllib3 интерпретатора языка программирования Python, связанная с недостаточной нейтрализацией специальных элементов в запросе, позволяющая нарушителю получить доступ к конфиденциальным данным и нарушить их целостность | CVSS3: 6.5 | 0% Низкий | около 5 лет назад |
Уязвимостей на страницу