Lines 1-3
Link Here
|
|
|
1 |
<vuln vid="24049967-88ec-11ec-88f5-901b0e934d69"> |
2 |
<topic>py-twisted -- cookie and authorization headers are leaked when following cross-origin redirects</topic> |
3 |
<affects> |
4 |
<package> |
5 |
<name>py37-twisted</name> |
6 |
<name>py38-twisted</name> |
7 |
<name>py39-twisted</name> |
8 |
<name>py310-twisted</name> |
9 |
<range><lt>22.1.0</lt></range> |
10 |
</package> |
11 |
</affects> |
12 |
<description> |
13 |
<body xmlns="http://www.w3.org/1999/xhtml"> |
14 |
<p>Twisted developers report:</p> |
15 |
<blockquote cite="https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx"> |
16 |
<p> Cookie and Authorization headers are leaked when following cross-origin redirects in <code>twited.web.client.RedirectAgent</code> and <code>twisted.web.client.BrowserLikeRedirectAgent</code>.</p> |
17 |
</blockquote> |
18 |
</body> |
19 |
</description> |
20 |
<references> |
21 |
<url>https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx</url> |
22 |
</references> |
23 |
<dates> |
24 |
<discovery>2022-02-07</discovery> |
25 |
<entry>2022-02-08</entry> |
26 |
</dates> |
27 |
</vuln> |
28 |
|
1 |
<vuln vid="fc2a9541-8893-11ec-9d01-80ee73419af3"> |
29 |
<vuln vid="fc2a9541-8893-11ec-9d01-80ee73419af3"> |
2 |
<topic>xrdp -- privilege escalation</topic> |
30 |
<topic>xrdp -- privilege escalation</topic> |
3 |
<affects> |
31 |
<affects> |