RSS   Vulnerabilities for 'Content'   RSS

2018-06-06
 
CVE-2017-16111

CWE-400
 

 
The content module is a module to parse HTTP Content-* headers. It is used by the hapijs framework to provide this functionality. The module is vulnerable to regular expression denial of service when passed a specifically crafted Content-Type or Content-Disposition header.

 


Copyright 2024, cxsecurity.com

 

Back to Top