ngx_http_lua_module (aka lua-nginx-module) prior to 0.10.16 in OpenResty allows unsafe characters in an argument when using the API to mutate a URI, or a request or response header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openresty lua-nginx-module |