漏洞描述
HAProxy中存在拒绝服务漏洞。该漏洞是由于对HTTP Set-Cookie2标头的检查不正确导致的。
HAProxy Set-Cookie2 Header Handling 拒绝服务漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-56266: Avigilon ACM - Host Header Injection
- POC CVE-2025-8848: LibreChat <= 0.7.9 - HTML Injection via Accept-Language Header
- POC x-backend-server-header-detect: X-Backend-Server Header - Exposure
- POC CVE-2015-8562: Joomla HTTP Header Unauthenticated - Remote Code Execution
- POC CVE-2018-1335: Apache Tika < 1.1.8 - Header Command Injection
- POC CVE-2018-16979: Monstra CMS 3.0.4 - HTTP Header Injection
- POC CVE-2021-24791: Header Footer Code Manager < 1.1.14 - Admin+ SQL Injection
- POC CVE-2021-38751: ExponentCMS <= 2.6 - Host Header Injection
- POC CVE-2022-0899: Header Footer Code Manager < 1.1.24 - Cross-Site Scripting
- POC file-disable-server-header: Disable Apache2 Server Header
- POC haproxy-config-file: Haproxy Config - File Disclosure
- POC header-command-injection: Header - Remote Command Injection
- POC cdn-cache-poisoning: Misconfigured CDN Cache Poisoning via X-Amz-Server-Side-Encryption Header