Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
cURL and libcurl before 7.38.0 allow remote attackers to bypass the Same Origin Policy and set cookies for arbitrary sites by setting a cookie for a top-level domain.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Haxx cURL和libcurl 加密问题漏洞
Vulnerability Description
Haxx curl和libcurl都是瑞典Haxx公司的产品。curl是一套利用URL语法在命令行下工作的文件传输工具。libcurl是一个免费、开源的客户端URL传输库。 Haxx cURL和libcurl 7.37.1及之前版本中存在安全漏洞。远程攻击者可通过为top-level域设置cookie利用该漏洞绕过同源策略并为任意站点设置cookie。
CVSS Information
N/A
Vulnerability Type
N/A