Back to search
CVE-2019-10751
Published: Aug 23, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control.
| Vendor | Product | Versions |
|---|---|---|
n/a | HTTPIE | affected All versions prior to version 1.0.3 |
References
https://snyk.io/vuln/SNYK-PYTHON-HTTPIE-460107
x_refsource_MISC
https://github.com/jakubroztocil/httpie/releases/tag/1.0.3
x_refsource_MISC
openSUSE-SU-2019:2050
vendor-advisory
x_refsource_SUSE
openSUSE-SU-2019:2089
vendor-advisory
x_refsource_SUSE
[debian-lts-announce] 20190928 [SECURITY] [DLA 1937-1] httpie security update
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now