Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's position is "Webrick should not be used in production."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Webrick 安全漏洞
Vulnerability Description
Webrick是The Ruby Programming Language开源的一个 HTTP 服务器工具包。 Webrick 1.8.1版本存在安全漏洞,该漏洞源于通过提供Content-Length标头和Transfer-Encoding标头以允许HTTP请求走私。
CVSS Information
N/A
Vulnerability Type
N/A