Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CRLF Injection in DECE Software's Geodi
Vulnerability Description
Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in DECE Software Geodi allows HTTP Request Splitting.This issue affects Geodi: before GEODI Setup 9.0.146.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Vulnerability Type
对CRLF序列的转义处理不恰当(CRLF注入)
Vulnerability Title
DECE Software Geodi 注入漏洞
Vulnerability Description
DECE Software Geodi是英国DECE Software公司的一个AI和NLP驱动的数据发现、分类、搜索平台。 DECE Software Geodi存在注入漏洞,该漏洞源于CRLF序列中和不当,可能导致HTTP请求拆分。
CVSS Information
N/A
Vulnerability Type
N/A