curl: HTTP Proxy Bypass via `CURLOPT_CUSTOMREQUEST` Verb Tunneling
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Failure to strip Proxy-Authorization header on change in origin
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: GnuTLS CURLINFO_TLS_SESSION / CURLINFO_TLS_SSL_PTR type confusion
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Lichess: ImageId Format Injection in Image Upload Endpoint
The image upload endpoint in the Lichess application did not properly validate the 'rel' parameter, allowing an attacker to inject special characters that broke the expected format of the ge ...
Continue Reading
August 12, 2025
curl: Arbitrary File Read via file:// Protocol in cURL
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Path Traversal in SFTP QUOTE command leads to Arbitrary File Write and potential RCE
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Stack use-after-scope in HTTP/3 POST request processing via CURLOPT_POSTFIELDS
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: CRLF injection in libcurl’s SMTP client via –mail-from and –mail-rcpt allows SMTP command smuggling
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Back to Main
