Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-444

CWE-444

Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Parent: CWE-436 - Interpretation Conflict

The product acts as an intermediary HTTP agent (such as a proxy or firewall) in the data flow between two entities such as a client and server, but it does not interpret malformed HTTP requests or responses in ways that are consistent with how the messages will be processed by those entities that are at the ultimate destination.

315 vulnerabilities with CWE-444

CVE-2020-11076 HIGH

Puma <4.3.4, <3.12.5 - SSRF

CVE-2020-7655 MEDIUM

Hive Netius < 1.17.58 - HTTP Request Smuggling

CVE-2020-11506 HIGH

Gitlab < 12.7.9 - HTTP Request Smuggling

CVE-2020-11505 HIGH

Gitlab < 12.7.9 - HTTP Request Smuggling

CVE-2020-11724 HIGH

Openresty < 1.15.8.4 - HTTP Request Smuggling

CVE-2020-7611 CRITICAL

Objectcomputing Micronaut < 1.2.11 - HTTP Request Smuggling

CVE-2020-5129 HIGH

Sonicwall Sma1000 Firmware < 12.1.0-06411 - HTTP Request Smuggling

CVE-2020-1944 CRITICAL

Apache Traffic Server < 6.2.3 - HTTP Request Smuggling

CVE-2020-10109 CRITICAL

Twisted < 19.10.0 - HTTP Request Smuggling

CVE-2020-10108 CRITICAL

Twisted < 19.10.0 - HTTP Request Smuggling

CVE-2020-10112 MEDIUM

Citrix Gateway Firmware - HTTP Request Smuggling

CVE-2020-10111 HIGH

Citrix Gateway Firmware - HTTP Request Smuggling

CVE-2020-5401 MEDIUM

Cloudfoundry Routing Release < 0.197.0 - HTTP Request Smuggling

CVE-2020-1935 MEDIUM

Apache Tomcat < 7.0.99 - HTTP Request Smuggling

CVE-2020-5220 MEDIUM

Syliusresourcebundle < 1.3.12 - HTTP Request Smuggling

CVE-2020-5218 MEDIUM

Sylius < 1.3.13 - HTTP Request Smuggling

CVE-2020-5207 MEDIUM

Jetbrains Ktor < 1.3.0 - HTTP Request Smuggling

CVE-2020-7238 HIGH

Netty < 4.1.45 - HTTP Request Smuggling

CVE-2019-17567 MEDIUM

Apache HTTP Server < 2.4.46 - HTTP Request Smuggling

CVE-2019-19326 MEDIUM

Silverstripe CMS <4.4.4 - Web Cache Poisoning

CVE-2019-20866 MEDIUM

Mattermost Server < 5.12.0 - HTTP Request Smuggling

CVE-2019-17565 CRITICAL

Apache Traffic Server < 6.2.3 - HTTP Request Smuggling

CVE-2019-17559 CRITICAL

Apache Traffic Server < 6.2.3 - HTTP Request Smuggling

CVE-2019-19223 HIGH

D-Link DSL-2680 - DoS

CVE-2019-17569 MEDIUM

Apache Tomcat < 7.0.99 - HTTP Request Smuggling

Previous Page 11 of 13 Next

Details

Vulnerabilities 315

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy