mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-03 04:38:03 +02:00
0xMarcio
918 B
918 B
CVE-2022-21712
Description
twisted is an event-driven networking engine written in Python. In affected versions twisted exposes cookies and authorization headers when following cross-origin redirects. This issue is present in the twited.web.RedirectAgent and twisted.web. BrowserLikeRedirectAgent functions. Users are advised to upgrade. There are no known workarounds.
POC
Reference
No PoCs from references.