All 2 CVE vulnerabilities found in coraza, with AI-generated Chinese analysis, references, and POCs.
Vendor: corazawaf
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-29914 | OWASP Coraza WAF has parser confusion which leads to wrong URI in `REQUEST_FILENAME` CWE-706 | 5.4 | Medium | 2025-03-20 |
| CVE-2023-40586 | go package github.com/corazawaf/coraza is vulnerable to denial of service CWE-400 | 7.5 | High | 2023-08-25 |
All 2 known CVE vulnerabilities affecting coraza with full Chinese analysis, references, and POCs where available.