VYPR

HTTP.jl

by Juliaweb

Source repositories

CVEs (2)

  • CVE-2025-61689HigOct 10, 2025
    risk 0.57cvss epss 0.00

    HTTP.jl is an HTTP client and server functionality for the Julia programming language. Prior to version 1.10.19, HTTP.jl did not validate header names/values for illegal characters, allowing CRLF-based header injection and response splitting. This enables HTTP response splitting…

  • CVE-2025-52479HigJun 25, 2025
    risk 0.43cvss epss 0.00

    HTTP.jl provides HTTP client and server functionality for Julia, and URIs.jl parses and works with Uniform Resource Identifiers (URIs). URIs.jl prior to version 1.6.0 and HTTP.jl prior to version 1.10.17 allows the construction of URIs containing CR/LF characters. If user input…