Количество 2
Количество 2
CVE-2023-51701
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with `@fastify/reply-from` could misinterpret the incoming body by passing an header `ContentType: application/json ; charset=utf-8`. This can lead to bypass of security checks. This vulnerability has been patched in '@fastify/reply-from` version 9.6.0.
GHSA-v2v2-hph8-q5xp
@fastify/reply-from JSON Content-Type parsing confusion
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-51701 fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with `@fastify/reply-from` could misinterpret the incoming body by passing an header `ContentType: application/json ; charset=utf-8`. This can lead to bypass of security checks. This vulnerability has been patched in '@fastify/reply-from` version 9.6.0. | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
| GHSA-v2v2-hph8-q5xp @fastify/reply-from JSON Content-Type parsing confusion | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
Уязвимостей на страницу