Advisories in category 'format-injection'
-
RUSTSEC-2024-0365: Vulnerability in diesel
Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts
-
RUSTSEC-2024-0363: Vulnerability in sqlx
Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts
-
RUSTSEC-2022-0072: Vulnerability in hyper-staticfile
Location header incorporates user input, allowing open redirect
-
RUSTSEC-2022-0003: Vulnerability in ammonia
Space bug in
clean_text -
RUSTSEC-2021-0074: Vulnerability in ammonia
Incorrect handling of embedded SVG and MathML leads to mutation XSS
-
RUSTSEC-2021-0069: Vulnerability in lettre
SMTP command injection in body
-
RUSTSEC-2021-0063: Vulnerability in comrak
XSS in
comrak -
MEDIUM RUSTSEC-2021-0026: Vulnerability in comrak
XSS in
comrak -
HIGH RUSTSEC-2021-0020: Vulnerability in hyper
Multiple Transfer-Encoding headers misinterprets request payload
-
CRITICAL RUSTSEC-2020-0008: Vulnerability in hyper
Flaw in hyper allows request smuggling by sending a body in GET requests