Archive Search About

中文 English

article Security Advisories EN

Ruby: HTTP Header Injection in 'net/http'

            2016-06-01
            · 45 views
        

An HTTP header injection vulnerability in Ruby's net/http standard library allows attackers to inject arbitrary headers into HTTP requests.

Product: Ruby (net/http)
Type: HTTP Header Injection
Reference: Bugtraq

Related Posts

article Sourcetree Arbitrary Command Execution (CVE-2017-8768) article WebKit Same-Origin Policy Bypass (CVE-2017-2488) article WebKit URL Bar Spoofing (CVE-2017-2486) article State-Sponsored "Living Off The Land" Attack Wipes 200,000 Devices via Microsoft Intune article GhostScript Sandbox Bypass Leading to ImageMagick RCE (CVE-2016-7976)