VYPR
Moderate severityOSV Advisory· Published Feb 3, 2019· Updated Sep 16, 2024

CVE-2019-7313

CVE-2019-7313

Description

www/resource.py in Buildbot before 1.8.1 allows CRLF injection in the Location header of /auth/login and /auth/logout via the redirect parameter. This affects other web sites in the same domain.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
buildbotPyPI
>= 0.9.0, < 1.8.11.8.1

Affected products

2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.