nginx/nginx: The latest CVE Vulnerabilities and Exploits for Penetration Test
nginx/nginx Vulnerability Summary Vendor name: nginx Product name: nginx Total vulnerabilities: 9 (as 2023-05-04) nginx/nginx Vulnerability List CVE-2019-20372: NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as… Published: 2020-01-09T21:15:00 Last Modified: 2021-09-22T00:15:00
Summary
NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.