Advisories in category 'format-injection'

December 23, 2022
RUSTSEC-2022-0072: Vulnerability in hyper-staticfile

Location header incorporates user input, allowing open redirect
January 19, 2022
RUSTSEC-2022-0003: Vulnerability in ammonia

Space bug in clean_text
July 8, 2021
RUSTSEC-2021-0074: Vulnerability in ammonia

Incorrect handling of embedded SVG and MathML leads to mutation XSS
May 22, 2021
RUSTSEC-2021-0069: Vulnerability in lettre

SMTP command injection in body
May 4, 2021
RUSTSEC-2021-0063: Vulnerability in comrak

XSS in comrak
February 21, 2021
MEDIUM RUSTSEC-2021-0026: Vulnerability in comrak

XSS in comrak
February 5, 2021
HIGH RUSTSEC-2021-0020: Vulnerability in hyper

Multiple Transfer-Encoding headers misinterprets request payload
October 1, 2020
CRITICAL RUSTSEC-2020-0008: Vulnerability in hyper

Flaw in hyper allows request smuggling by sending a body in GET requests