Site icon API Security Blog

HTTP Request Smuggling

Quarkus is vulnerable to HTTP request smuggling. The vulnerability exists in `handle` function in `SmallRyeGraphQLAbstractHandler.java` due to incomplete termination of the HTTP request header which allows an attacker to smuggle HTTP requests by submitting malicious headers.Read More

Exit mobile version