Vulnerability report: third party site credentials leak when redirect in

bug-wget

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Vulnerability report: third party site credentials leak when redirect in

From:	王念
Subject:	Vulnerability report: third party site credentials leak when redirect in wget
Date:	Fri, 10 Jun 2022 13:14:26 +0800

Hello everyone, We found a flaw that wget does not properly filter the request 
header when 302 redirecting. It will also send cookie and Authorization (such 
as any other header) that not reserved of t

[Prev in Thread]

Current Thread

[Next in Thread]

Vulnerability report: third party site credentials leak when redirect in wget, 王念 <=

Prev by Date: Thirdparty site authorization header leak in mirror/wget
Next by Date: Re: wget crashes on a recursive download of my city's website
Previous by thread: Thirdparty site authorization header leak in mirror/wget
Next by thread: wget and WebKit?
Index(es):
- Date
- Thread