[CKAN-Security] HTTP Response Splitting - Vulnerable module: WebOb
Lukáš Cígler
lukas.cigler at iseco.cz
Mon Nov 19 13:13:06 UTC 2018
Hello CKAN team,
Testing with https://snyk.io utility I was able to find “HTTP Response Splitting“ vulnerability in your application.
Vulnerable module: WebOb - Affecting webob package, versions [,1.6.0a0)
https://snyk.io/test/github/ckan/ckan
https://snyk.io/vuln/SNYK-PYTHON-WEBOB-40490
Best Regards,
Lukáš Cígler
Senior Security Consultant
+420 776 142 266<tel:+420%20776%20142%20266> / lukas.cigler at iseco.cz<mailto:lukas.cigler at iseco.cz> / www.iseco.cz<http://www.iseco.cz>
Bartůňkova 2349/3a, 149 00, Praha 4
[cid:image001.png at 01D48011.FE38ED50]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.okfn.org/mailman/private/security/attachments/20181119/255f30c2/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 8323 bytes
Desc: image001.png
URL: <https://lists.okfn.org/mailman/private/security/attachments/20181119/255f30c2/attachment.png>
More information about the Security
mailing list