H1-2861797 — Vulnetix

Try Vulnetix Request Demo

H1-2861797 PUBLISHED

curl mishandles `%0c%0b` sequences in HTTP responses leading to CRLF confusions, Headers and Cookies Injection

Timeline

Jul 7, 2025 CVE Published
Jul 7, 2025 PoC Published

References

curl mishandles `%0c%0b` sequences in HTTP responses leading to CRLF confusions, Headers and Cookies Injection advisory

Open in Interactive Console →