cpp-httplib up to and including 0.5.8 does not filter \r\n in parameters passed into the set_redirect and set_header functions, which creates possibilities for CRLF injection and HTTP response splitting in some specific contexts.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cpp-httplib project cpp-httplib |