CVE-2018-11783

CVE-2018-11783

sslheaders plugin extracts information from the client certificate and sets headers in the request based on the configuration of the plugin. The plugin doesn’t strip the headers from the request in some scenarios. This problem was discovered in versions 6.0.0 to 6.0.3, 7.0.0 to 7.1.5, and 8.0.0 to 8.0.1.

Source: CVE-2018-11783

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다