Количество 76
Количество 76
CVE-2020-26137
urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116.
CVE-2020-26137
urllib3 before 1.25.9 allows CRLF injection if the attacker controls t ...
CVE-2020-26116
http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.
CVE-2020-26116
http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.
CVE-2020-26116
http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.
CVE-2020-26116
http.client in Python 3.x before 3.5.10 3.6.x before 3.6.12 3.7.x before 3.7.9 and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.
CVE-2020-26116
http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x be ...
openSUSE-SU-2022:0803-1
Security update for python-lxml
SUSE-SU-2022:0895-1
Security update for python-lxml
SUSE-SU-2022:0803-1
Security update for python-lxml
openSUSE-SU-2021:2817-1
Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3
openSUSE-SU-2021:1206-1
Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3
openSUSE-SU-2020:2282-1
Security update for python-urllib3
openSUSE-SU-2020:2237-1
Security update for python-urllib3
SUSE-SU-2021:3251-1
Security update for python-urllib3
SUSE-SU-2021:2817-1
Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3
SUSE-SU-2020:3723-1
Security update for python-urllib3
RLSA-2021:1631
Moderate: python-urllib3 security update
GHSA-wqvq-5m8c-6g24
CRLF injection in urllib3
ELSA-2021-1631
ELSA-2021-1631: python-urllib3 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-26137 urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116. | CVSS3: 6.5 | 0% Низкий | около 5 лет назад |
| CVE-2020-26137 urllib3 before 1.25.9 allows CRLF injection if the attacker controls t ... | CVSS3: 6.5 | 0% Низкий | больше 5 лет назад |
 | CVE-2020-26116 http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. | CVSS3: 7.2 | 2% Низкий | больше 5 лет назад |
 | CVE-2020-26116 http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. | CVSS3: 6.5 | 2% Низкий | почти 6 лет назад |
 | CVE-2020-26116 http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. | CVSS3: 7.2 | 2% Низкий | больше 5 лет назад |
| CVE-2020-26116 http.client in Python 3.x before 3.5.10 3.6.x before 3.6.12 3.7.x before 3.7.9 and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. | CVSS3: 7.2 | 2% Низкий | около 5 лет назад |
| CVE-2020-26116 http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x be ... | CVSS3: 7.2 | 2% Низкий | больше 5 лет назад |
 | openSUSE-SU-2022:0803-1 Security update for python-lxml | почти 4 года назад | ||
| SUSE-SU-2022:0895-1 Security update for python-lxml | почти 4 года назад | ||
| SUSE-SU-2022:0803-1 Security update for python-lxml | почти 4 года назад | ||
| openSUSE-SU-2021:2817-1 Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 | 0% Низкий | больше 4 лет назад | |
| openSUSE-SU-2021:1206-1 Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 | 0% Низкий | больше 4 лет назад | |
| openSUSE-SU-2020:2282-1 Security update for python-urllib3 | 0% Низкий | около 5 лет назад | |
| openSUSE-SU-2020:2237-1 Security update for python-urllib3 | 0% Низкий | около 5 лет назад | |
| SUSE-SU-2021:3251-1 Security update for python-urllib3 | 0% Низкий | больше 4 лет назад | |
| SUSE-SU-2021:2817-1 Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 | 0% Низкий | больше 4 лет назад | |
| SUSE-SU-2020:3723-1 Security update for python-urllib3 | 0% Низкий | около 5 лет назад | |
 | RLSA-2021:1631 Moderate: python-urllib3 security update | 0% Низкий | больше 4 лет назад | |
| GHSA-wqvq-5m8c-6g24 CRLF injection in urllib3 | CVSS3: 6.5 | 0% Низкий | больше 4 лет назад |
| ELSA-2021-1631 ELSA-2021-1631: python-urllib3 security update (MODERATE) | больше 4 лет назад |
Уязвимостей на страницу