twisted is an event-driven... CVE-2022-21712

- AV AC AU C I A
发布: 2022-03-24
修订: 2022-04-29

twisted is an event-driven networking engine written in Python. In affected versions twisted exposes cookies and authorization headers when following cross-origin redirects. This issue is present in the `twited.web.RedirectAgent` and `twisted.web. BrowserLikeRedirectAgent` functions. Users are advised to upgrade. There are no known workarounds.

0%
暂无可用Exp或PoC
当前有0条受影响产品信息