CVE
CVE-2021-23336
| CVE ID |
CVE-2021-23336
|
|---|---|
| CVSS Score |
5.9
|
| Operating System | |
| Affected Versions | |
| Patched Versions | |
| Patch Date |
|
| Last Updated Date | |
| Vector String |
Additional Information
OL CVE Issue Summary:
Web cache poisoning via urllib.parse.parse_qsl and parse_qs. Attackers can use semicolons (;) in query parameters ("parameter cloaking") to cause proxies and servers to interpret requests differently, potentially allowing malicious requests to be cached as safe ones.