Security Advisory

CVE-2020-36309

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-06 17:32:45

Last updated 2025-11-03 19:25:36

Assigner mitre

State PUBLISHED

Description

ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty allows unsafe characters in an argument when using the API to mutate a URI, or a request or response header.

← Browse all CVEs View on cve.org ↗