Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.6
CVE-2024-35195
- EPSS 0.05%
- Veröffentlicht 20.05.2024 21:15:09
- Zuletzt bearbeitet 21.11.2024 09:19:54
Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests `Session`, if the first request is made with `verify=False` to disable cert verification, all subsequent requests to the same host will continue to ignore cert verif...
6.1
CVE-2023-28155
- EPSS 0.56%
- Veröffentlicht 16.03.2023 15:15:11
- Zuletzt bearbeitet 21.11.2024 07:54:30
The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no lon...
7.1
CVE-2017-16026
- EPSS 0.77%
- Veröffentlicht 04.06.2018 19:29:01
- Zuletzt bearbeitet 21.11.2024 03:15:41
Request is an http client. If a request is made using ```multipart```, and the body type is a ```number```, then the specified number of non-zero memory is passed in the body. This affects Request >=2.2.6 <2.47.0 || >2.51.0 <=2.67.0.
1