Falhas do tipo CWE-113
81 resultadosCVE-2026-43870HIGHApache Thrift: Node.js web_server.js multi-vulnerabilityEPSS 0.4%CVE-2026-42035HIGHAxios: Header Injection via Prototype PollutionEPSS 0.4%CVE-2025-0588MEDIUMIn affected versions of Octopus Server it was possible for a user with sufficient access to set custom headers in all server responses. By sEPSS 0.4%CVE-2024-20392MEDIUMA vulnerability in the web-based management API of Cisco AsyncOS Software for Cisco Secure Email Gateway could allow an unauthenticated, remEPSS 0.4%CVE-2023-42450MEDIUMMastodon Server-Side Request Forgery vulnerabilityEPSS 0.4%CVE-2023-26137HIGHAll versions of the package drogonframework/drogon are vulnerable to HTTP Response Splitting when untrusted user input is used to build headEPSS 0.4%CVE-2023-26147MEDIUMAll versions of the package ithewei/libhv are vulnerable to HTTP Response Splitting when untrusted user input is used to build headers valueEPSS 0.4%CVE-2025-0825MEDIUMCRLF injection in Cpp-httplibEPSS 0.4%CVE-2025-52479HIGHHTTP.jl vulnerable to CR/LF Injection in URIsEPSS 0.4%CVE-2025-53094HIGHESPAsyncWebServer Vulnerable to CRLF Injection in AsyncWebHeader.cppEPSS 0.4%CVE-2026-24489MEDIUMGakido vulnerable to HTTP Header Injection (CRLF Injection)EPSS 0.4%CVE-2026-38967CRITICALCrowCpp Crow through v1.3.1 HTTP is vulnerable to response header injection via unvalidated response header values.EPSS 0.3%CVE-2022-37953MEDIUMWorkstationST - Response Splitting in AM Gateway Challenge-ResponseEPSS 0.3%CVE-2026-41683HIGHHTTP response splitting and DoS in i18next-http-middleware via unsanitised Content-Language headerEPSS 0.3%CVE-2026-34715MEDIUMewe Has Improper Neutralization of CRLF Sequences in HTTP Headers (HTTP Request/Response Splitting)EPSS 0.3%CVE-2025-55271LOWHCL Aftermarket DPC is affected by HTTP Response Splitting vulnerabilityEPSS 0.3%CVE-2026-34514LOWAIOHTTP: CRLF injection in multipart part content type header constructionEPSS 0.3%CVE-2026-43966MEDIUMHTTP Response Splitting via Non-VCHAR Bytes in cow_http_struct_hd:escape_string/2EPSS 0.3%CVE-2025-61689HIGHHTTP.jl vulnerable to Header injection/Response splitting via header construction.EPSS 0.3%CVE-2026-22779MEDIUMBlackSheep ClientSession is vulnerable to CRLF injectionEPSS 0.3%