Security: twisted/twisted
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
Disordered HTTP pipeline response in twisted.webGHSA-xc8x-vp79-p3wm published
Oct 24, 2023 by adiroibanHigh -
NameVirtualHost Host header injection.GHSA-vg46-2rrj-3647 published
Oct 26, 2022 by adiroibanLow -
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in twisted.webGHSA-c2jg-hw38-jrqq published
Apr 4, 2022 by adiroibanLow -
Twisted SSH client and server denial of service during SSH handshake.GHSA-rv6r-3f5q-9rgx published
Mar 3, 2022 by adiroibanModerate -
Cookie and Authorization headers are sent when following a cross-origin redirect with twisted.web.clientGHSA-92x2-jw7w-xvvx published
Feb 7, 2022 by adiroibanModerate -
HTTP Request Smuggling AttacksGHSA-8r99-h8j2-rw64 published
Feb 7, 2022 by adiroibanModerate -
HTTP/2 DoS Attacks: Ping, Reset, and Settings FloodsGHSA-32gv-6cf3-wcmq published
Mar 13, 2022 by adiroibanCritical