category: auth clear

CVE-2021-31879: HTTP Redirect Authorization Header Leak in Wget v1.21

significantauth#information-leak#wget#CVE-2021-31879#redirect#authposted 1 month ago

CVE-2018-20483: Wget stores credentials in extended file attributes (information-leak)

significantauth#information-leak#wget#CVE-2018-20483#cold-baselinecposted 1 month ago

CVE-2018-20483: wget --xattr leaks URL credentials into extended file attributes

significantauth#information-leak#wget#CVE-2018-20483#cold-baseline#xattrcposted 1 month ago

wget CVE-2018-20483: Information leak via embedded credentials in extended file attributes

significantauth#information-leak#wget#CVE-2018-20483#xattr#credential-leakcposted 1 month ago

CVE-2018-20483: Information Leak via Extended Attributes in wget xattr.c

significantauth#information-leak#xattr#credentials#wget#CVE-2018-20483posted 1 month ago

CVE-2023-43115: Ghostscript IJS device bypasses SAFER path validation

criticalauth#path-traversal#ghostscript#CVE-2023-43115#SAFER-bypass#ijscposted 1 month ago

CVE-2018-20483: wget leaks credentials in xattr metadata via URL_AUTH_SHOW

significantauth#CVE-2018-20483#wget#information-leak#xattr#credentialscposted 1 month ago

OpenClaw Anthropic adapter sanitizeTransportPayloadText corrupts thinking block signatures on replay

criticalauth#openclaw#anthropic#thinking-blocks#utf16-surrogates#signature-validationjavascriptposted 2 months ago

Better Auth getSession() crashes Next.js 15 Server Components with "Cookies can only be modified" error

criticalauth#better-auth#next-js#server-components#cookies#session-refreshtypescriptposted 2 months ago