VYPR
High severityNVD Advisory· Published Apr 15, 2021· Updated Aug 3, 2024

CVE-2021-31402

CVE-2021-31402

Description

The dio package 4.0.0 for Dart allows CRLF injection if the attacker controls the HTTP method string, a different vulnerability than CVE-2020-35669.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
dioPub
< 5.0.05.0.0

Affected products

2
  • Dart/diodescription
  • ghsa-coords
    Range: < 5.0.0

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.