Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-444

CWE-444

Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Parent: CWE-436 - Interpretation Conflict

The product acts as an intermediary HTTP agent (such as a proxy or firewall) in the data flow between two entities such as a client and server, but it does not interpret malformed HTTP requests or responses in ways that are consistent with how the messages will be processed by those entities that are at the ultimate destination.

315 vulnerabilities with CWE-444

CVE-2025-58068 CRITICAL

Eventlet < 0.40.3 - HTTP Request Smuggling

CVE-2025-54142 MEDIUM

Akamai Ghost <2025-07-21 - HTTP Request Smuggling

CVE-2025-32094 MEDIUM

Akamai Ghost <2025-03-26 - SSRF

CVE-2025-52892 MEDIUM

Espocrm < 9.1.7 - HTTP Request Smuggling

CVE-2025-53643 HIGH

AIOHTTP <3.12.14 - Request Smuggling

CVE-2025-53628 HIGH

cpp-httplib <0.20.1 - Memory Corruption

CVE-2025-49826 HIGH

Vercel Next.js < 15.1.8 - HTTP Request Smuggling

CVE-2025-49005 LOW

Vercel Next.js < 15.3.3 - HTTP Request Smuggling

CVE-2025-6442 MEDIUM

Ruby-lang Webrick < 1.8.2 - HTTP Request Smuggling

CVE-2025-41235 HIGH

Org.springframework.cloud Spring-clou... - HTTP Request Smuggling

CVE-2025-4366 MEDIUM

Cloudflare Pingora < 0.5.0 - HTTP Request Smuggling

CVE-2025-23167 MEDIUM

Node.js 20 - Request Smuggling

CVE-2025-4600 HIGH

Google Cloud Classic App LB - RCE

CVE-2025-47905 MEDIUM

Varnish Cache <7.6.3-7.7.1 & Varnish Enterprise <6.0.13r14 - Open R...

CVE-2025-43859 CRITICAL

Pypi H11 < 0.16.0 - HTTP Request Smuggling

CVE-2025-1386 MEDIUM

Clickhouse CH < 0.65.0 - HTTP Request Smuggling

CVE-2025-31137 HIGH

React-router Express < 7.4.1 - HTTP Request Smuggling

CVE-2025-30346 MEDIUM

Varnish Cache <7.6.2 - Open Redirect

CVE-2025-29904 MEDIUM

JetBrains Ktor <3.1.1 - SSRF

CVE-2025-1867 CRITICAL

libhv <1.3.3 - SSRF

CVE-2025-0752 HIGH

OpenShift Service Mesh <2.6.3, <2.5.6 - SSRF

CVE-2024-56523 CRITICAL

Radware Cloud WAF <2025-05-07 - Auth Bypass

CVE-2024-33452 HIGH

Openresty Lua-nginx-module < 0.10.26 - HTTP Request Smuggling

CVE-2024-29643 CRITICAL

Croogo <3.0.2 - SSRF

CVE-2024-53868 HIGH

Apache Traffic Server <9.2.10-10.0.5 - Request Smuggling

Previous Page 3 of 13 Next

Details

Vulnerabilities 315

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy