Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Elixir Plug Plug version All contains a Header Injection vulnerability in Connection that can result in Given a cookie value, Headers can be added. This attack appear to be exploitable via Crafting a value to be sent as a cookie. This vulnerability appears to have been fixed in >= 1.3.5 or ~> 1.2.5 or ~> 1.1.9 or ~> 1.0.6.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Elixir Plug Plug 安全漏洞
Vulnerability Description
Elixir Plug是一个用于开发基于Erlang VM的Web应用程序的库。 Elixir Plug Plug中的Connection存在安全漏洞。攻击者可借助特制的cookie值利用该漏洞添加报头。以下版本受到影响:Elixir Plug Plug 1.3.5之前版本,1.2.5及之前版本,1.1.9及之前版本,1.0.6及之前版本。
CVSS Information
N/A
Vulnerability Type
N/A