Количество 2
Количество 2
CVE-2020-7764
This affects the package find-my-way before 2.2.5, from 3.0.0 and before 3.0.5. It accepts the Accept-Version' header by default, and if versioned routes are not being used, this could lead to a denial of service. Accept-Version can be used as an unkeyed header in a cache poisoning attack.
GHSA-jgrh-5m3h-9c5f
Web Cache Poisoning in find-my-way
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-7764 This affects the package find-my-way before 2.2.5, from 3.0.0 and before 3.0.5. It accepts the Accept-Version' header by default, and if versioned routes are not being used, this could lead to a denial of service. Accept-Version can be used as an unkeyed header in a cache poisoning attack. | CVSS3: 5.9 | 1% Низкий | больше 5 лет назад |
| GHSA-jgrh-5m3h-9c5f Web Cache Poisoning in find-my-way | CVSS3: 5.9 | 1% Низкий | около 5 лет назад |
Уязвимостей на страницу