| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-42516 | Apache HTTP Server: HTTP response splitting | Apache Software Foundation | Apache HTTP Server | - | - | 2025-07-10 16:53:13 | Deep Dive |
| CVE-2025-52479 | HTTP.jl vulnerable to CR/LF Injection in URIs | JuliaWeb | HTTP.jl | - | - | 2025-06-25 16:06:45 | Deep Dive |
| CVE-2025-4673 | Sensitive headers not cleared on cross-origin redirect in net/http | Go standard library | net/http | - | - | 2025-06-11 16:42:53 | Deep Dive |
| CVE-2025-32996 | http-proxy-middleware 安全漏洞 | chimurai | http-proxy-middleware | Medium | 4.0 | 2025-04-15 00:00:00 | Deep Dive |
| CVE-2025-32997 | http-proxy-middleware 安全漏洞 | chimurai | http-proxy-middleware | Medium | 4.0 | 2025-04-15 00:00:00 | Deep Dive |
| CVE-2025-22871 | Request smuggling due to acceptance of invalid chunked data in net/http | Go standard library | net/http/internal | - | - | 2025-04-08 20:04:35 | Deep Dive |
| CVE-2025-22870 | HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net | Go standard library | net/http | 中危 | - | 2025-03-12 18:27:59 | Deep Dive |
| CVE-2025-27867 | Apache Felix HTTP Webconsole Plugin: XSS in HTTP Webconsole Plugin | Apache Software Foundation | Apache Felix HTTP Webconsole Plugin | 中危 | - | 2025-03-12 15:51:25 | Deep Dive |
| CVE-2024-12213 | WP Job Board Pro < 1.2.85 - Unauthenticated Privilege Escalation via process_register | http://apusthemes.com/ | WP Job Board Pro | Critical | 9.8 | 2025-02-12 09:22:50 | Deep Dive |
| CVE-2024-45336 | Sensitive headers incorrectly sent after cross-domain redirect in net/http | Go standard library | net/http | 高危 | - | 2025-01-28 01:03:25 | Deep Dive |
| CVE-2025-21498 | Oracle Fusion Middleware 安全漏洞 | Oracle Corporation | Oracle HTTP Server | Medium | 5.3 | 2025-01-21 20:52:55 | Deep Dive |
| CVE-2025-23677 | WordPress HTTP to HTTPS link changer by Eyga.net plugin <= 0.2.4 - CSRF to Stored XSS vulnerability | DSmidge | HTTP to HTTPS link changer by Eyga.net | High | 7.1 | 2025-01-16 20:06:39 | Deep Dive |
| CVE-2024-13291 | Basic HTTP Authentication - Critical - Access bypass - SA-CONTRIB-2024-057 | Drupal | Basic HTTP Authentication | 中危 | - | 2025-01-09 20:16:29 | Deep Dive |
| CVE-2024-53990 | AsyncHttpClient (AHC) library's `CookieStore` replaces explicitly defined `Cookie`s | AsyncHttpClient | async-http-client | 高危 | - | 2024-12-02 17:10:28 | Deep Dive |
| CVE-2024-21536 | http-proxy-middleware 安全漏洞 | - | http-proxy-middleware | High | 7.5 | 2024-10-19 05:00:04 | Deep Dive |
| CVE-2024-21545 | Proxmox Virtual Environment 安全漏洞 | Proxmox | pve-manager | High | 8.2 | 2024-09-24 07:25:12 | Deep Dive |
| CVE-2024-40725 | Apache HTTP Server: source code disclosure with handlers configured via AddType | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2024-07-18 09:32:44 | Deep Dive |
| CVE-2024-40898 | Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows | Apache Software Foundation | Apache HTTP Server | - | - | 2024-07-18 09:32:07 | Deep Dive |
| CVE-2024-39884 | Apache HTTP Server: source code disclosure with handlers configured via AddType | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2024-07-04 08:36:50 | Deep Dive |
| CVE-2024-24791 | Denial of service due to improper 100-continue handling in net/http | Go standard library | net/http | - | - | 2024-07-02 21:28:26 | Deep Dive |