Categories ⋅ Keywords ⋅ Packages Advisories with keyword 'request-smuggling' March 5, 2026 CRITICAL RUSTSEC-2026-0033: Vulnerability in pingora-core HTTP Request Smuggling via Premature Upgrade March 5, 2026 CRITICAL RUSTSEC-2026-0034: Vulnerability in pingora-core HTTP Request Smuggling via HTTP/1.0 and Transfer-Encoding Misparsing May 22, 2025 RUSTSEC-2025-0037: Vulnerability in pingora-core Pingora Request Smuggling and Cache Poisoning August 10, 2021 HIGH RUSTSEC-2021-0081: Vulnerability in actix-http Potential request smuggling capabilities due to lack of input validation February 5, 2021 HIGH RUSTSEC-2021-0020: Vulnerability in hyper Multiple Transfer-Encoding headers misinterprets request payload December 18, 2020 RUSTSEC-2020-0093: Vulnerability in async-h1 Async-h1 request smuggling possible with long unread bodies October 1, 2020 MEDIUM RUSTSEC-2020-0031: Vulnerability in tiny_http HTTP Request smuggling through malformed Transfer Encoding headers October 1, 2020 CRITICAL RUSTSEC-2020-0008: Vulnerability in hyper Flaw in hyper allows request smuggling by sending a body in GET requests