Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-644 (对HTTP头部进行脚本语法转义处理不恰当) — Vulnerability Class 45

45 vulnerabilities classified as CWE-644 (对HTTP头部进行脚本语法转义处理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-39736 IBM Datacap Navigator HTTP HOST header injection — Datacap Navigator 6.5 Medium2024-07-15
CVE-2022-22399 IBM Aspera Faspex HTTP header injection — Aspera Faspex 5.4 Medium2024-03-05
CVE-2024-21499 caddy-security 安全漏洞 — github.com/greenpau/caddy-security 4.3 Medium2024-02-17
CVE-2024-1064 Improper Neutralization of HTTP Headers for Scripting Syntax in Crafty Controller 4 — Crafty Controller 7.5 High2024-02-03
CVE-2023-47143 IBM Tivoli Application Dependency Discovery Manager HOST header injection — Tivoli Application Dependency Discovery Manager 10.0 Critical2024-02-02
CVE-2023-34036 Forwarded header exploit with Spring HATEOAS on WebFlux — Spring HATEOAS 5.3 Medium2023-07-17
CVE-2023-36921 Header Injection in SAP Solution Manager (Diagnostic Agent) — SAP Solution Manager (Diagnostic Agent) 7.2 High2023-07-11
CVE-2023-32465 Dell PowerProtect Cyber Recovery 安全漏洞 — PowerProtect Cyber Recovery 8.8 High2023-06-14
CVE-2022-45102 Dell EMC Data Protection Central 安全漏洞 — Data Protection Central 5.4 Medium2023-02-01
CVE-2021-38997 IBM API Connect HOST header injection — API Connect 5.4 Medium2022-12-01
CVE-2022-34316 IBM CICS TX information disclosure — CICS TX 3.7 Low2022-11-14
CVE-2021-20784 Voidtools Everything 安全漏洞 — Everything 6.1 -2021-07-14
CVE-2021-21265 October CMS vulnerable to Potential Host Header Poisoning on misconfigured servers — october 6.8 Medium2021-03-10
CVE-2020-6982 Honeywell WIN-PAK 安全漏洞 — Honeywell WIN-PAK 4.7.2, Web and prior versions 9.8 -2020-03-24
CVE-2017-6031 Certec EDV GmbH atvise scada 安全漏洞 — Certec EDV GmbH atvise scada 8.3 -2017-05-06

Vulnerabilities classified as CWE-644 (对HTTP头部进行脚本语法转义处理不恰当) represent 45 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.