漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Lightbend Play Framework 2.5.x through 2.6.23. When configured to make requests using an authenticated HTTP proxy, play-ws may sometimes, typically under high load, when connecting to a target host using https, expose the proxy credentials to the target host.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Lightbend Play Framework 信息泄露漏洞
Vulnerability Description
Lightbend Play Framework是美国Lightbend公司的一款使用Scala语言编写的Web应用程序框架。 Lightbend Play Framework 2.5.x版本至2.6.23版本中存在信息泄露漏洞。远程攻击者可通过嗅探网络利用该漏洞从Authorization标头中获取用户名和密码。
CVSS Information
N/A
Vulnerability Type
N/A