CVE-2020-35669
N/A
N/A
Summary
An issue was discovered in the http package through 0.12.2 for Dart. If the attacker controls the HTTP method and the app is using Request directly, it's possible to achieve CRLF injection in an HTTP request.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/dart-lang/http/issues/511
- https://github.com/dart-lang/http/blob/master/CHANGELOG.md#0133
References
- https://github.com/dart-lang/http/issues/511
- https://github.com/dart-lang/http/blob/master/CHANGELOG.md#0133
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.