| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-1207 | HTTP Headers < 1.18.8 - Admin+ SQL Injection | Unknown | HTTP Headers | 高危 | - | 2023-05-15 12:15:30 | Deep Dive |
| CVE-2023-27522 | Apache HTTP Server: mod_proxy_uwsgi HTTP response splitting | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2023-03-07 15:09:30 | Deep Dive |
| CVE-2023-25690 | Apache HTTP Server: HTTP request splitting with mod_rewrite and mod_proxy | Apache Software Foundation | Apache HTTP Server | 超危 | - | 2023-03-07 15:09:03 | Deep Dive |
| CVE-2022-41723 | Denial of service via crafted HTTP/2 stream in net/http and golang.org/x/net | Go standard library | net/http | 高危 | - | 2023-02-28 17:19:46 | Deep Dive |
| CVE-2023-26281 | IBM HTTP Server denial of service | IBM | HTTP Server | Medium | 5.9 | 2023-02-28 14:19:16 | Deep Dive |
| CVE-2023-0044 | Red Hat quarkus-vertx-http 跨站脚本漏洞 | - | quarkus-vertx-http | 中危 | - | 2023-02-23 00:00:00 | Deep Dive |
| CVE-2022-25881 | http-cache-semantics 安全漏洞 | - | http-cache-semantics | Medium | 5.3 | 2023-01-31 05:00:01 | Deep Dive |
| CVE-2023-0040 | Async 注入漏洞 | Swift Project | Async HTTP Client | 高危 | - | 2023-01-18 00:00:00 | Deep Dive |
| CVE-2022-37436 | Apache HTTP Server: mod_proxy prior to 2.4.55 allows a backend to trigger HTTP response splitting | Apache Software Foundation | Apache HTTP Server | 中危 | - | 2023-01-17 19:13:00 | Deep Dive |
| CVE-2022-36760 | Apache HTTP Server: mod_proxy_ajp Possible request smuggling | Apache Software Foundation | Apache HTTP Server | 超危 | - | 2023-01-17 19:11:55 | Deep Dive |
| CVE-2006-20001 | Apache HTTP Server: mod_dav out of bounds read, or write of zero byte | Apache Software Foundation | Apache HTTP Server | 高危 | - | 2023-01-17 19:07:27 | Deep Dive |
| CVE-2014-125079 | agy pontifex.http Http.coffee sql injection | agy | pontifex.http | Medium | 5.5 | 2023-01-15 08:58:06 | Deep Dive |
| CVE-2022-41262 | SAP NetWeaver AS 跨站脚本漏洞 | SAP | NetWeaver AS for Java (Http Provider Service) | Medium | 6.1 | 2022-12-12 21:39:53 | Deep Dive |
| CVE-2022-41717 | Excessive memory growth in net/http and golang.org/x/net/http2 | Go standard library | net/http | 中危 | - | 2022-12-08 19:03:53 | Deep Dive |
| CVE-2022-41720 | Restricted file access on Windows in os and net/http | Go standard library | os | 高危 | - | 2022-12-07 16:11:19 | Deep Dive |
| CVE-2022-3402 | Log HTTP Requests <= 1.3.1 - Stored Cross-Site Scripting | mgibbs189 | Log HTTP Requests | Medium | 6.1 | 2022-10-28 18:57:42 | Deep Dive |
| CVE-2022-21593 | Oracle HTTP Server 安全漏洞 | Oracle Corporation | HTTP Server | High | 7.1 | 2022-10-18 00:00:00 | Deep Dive |
| CVE-2022-2880 | Incorrect sanitization of forwarded query parameters in net/http/httputil | Go standard library | net/http/httputil | 高危 | - | 2022-10-14 00:00:00 | Deep Dive |
| CVE-2022-36032 | ReactPHP's HTTP server parses encoded cookie names so malicious `__Host-` and `__Secure-` cookies can be sent | reactphp | http | Medium | 5.3 | 2022-09-06 18:20:13 | Deep Dive |
| CVE-2021-3688 | Red Hat JBoss Core Services 信息泄露漏洞 | - | Red Hat JBCS HTTP Server | 中危 | - | 2022-08-26 15:25:40 | Deep Dive |