HTTP request smuggling vulnerability in Pound prior to 1.9.4 allows remote malicious users to poison web caches, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with conflicting Content-length and Transfer-encoding headers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apsis pound |