HTTP Request Smuggling
Discription
Quarkus is vulnerable to HTTP request smuggling. The vulnerability exists in `handle` function in `SmallRyeGraphQLAbstractHandler.java` due to incomplete termination of the HTTP request header which allows an attacker to smuggle HTTP requests by submitting malicious headers.Read More
References
Back to Main