Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Lightbend Play Framework 2.5.x through 2.6.23. When configured to make requests using an authenticated HTTP proxy, play-ws may sometimes, typically under high load, when connecting to a target host using https, expose the proxy credentials to the target host.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Lightbend Play Framework 信息泄露漏洞
Vulnerability Description
Lightbend Play Framework是美国Lightbend公司的一款使用Scala语言编写的Web应用程序框架。 Lightbend Play Framework 2.5.x版本至2.6.23版本中存在信息泄露漏洞。远程攻击者可通过嗅探网络利用该漏洞从Authorization标头中获取用户名和密码。
CVSS Information
N/A
Vulnerability Type
N/A