Jodd HTTP v6.0.9 exists to contain multiple CLRF injection vulnerabilities via the components jodd.http.HttpRequest#set and `jodd.http.HttpRequest#send. These vulnerabilities allow malicious users to execute Server-Side Request Forgery (SSRF) via a crafted TCP payload.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jodd http |