Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| caddyserver | caddy | < 2.11.4 | - |
| # | POC Description | Source Link | Shenlong Link |
|---|
No public POC found.
Login to generate AI POC| CVE-2026-45135 | 8.1 HIGH | Caddy: Unsafe Unicode Handling in FastCGI splitPos Allows Execution of Non-PHP Files |
| CVE-2026-52845 | 8.1 HIGH | Caddy: FastCGI header normalization bypass in `forward_auth copy_headers` |
| CVE-2026-45692 | 5.4 MEDIUM | Caddy: Remote Admin Authorization Bypass in `/config` API via Array Index Normalization |
| CVE-2026-52846 | 4.2 MEDIUM | Caddy: stripHTML template function bypass |
No comments yet