CVE-2025-64484 | OAuth2-Proxy up to 7.12.x HTTP Header http headers for scripting syntax (GHSA-vjrc-mh2v-45×6)

Inserito da Angelo Barbosa | Nov 11, 2025 | CVE

A vulnerability, which was classified as critical, was found in OAuth2-Proxy up to 7.12.x. This vulnerability affects unknown code of the component HTTP Header Handler. Executing manipulation can lead to improper neutralization of http headers for scripting syntax.

The identification of this vulnerability is CVE-2025-64484. The attack may be launched remotely. There is no exploit available.

You should upgrade the affected component.

CVE-2025-64484 | OAuth2-Proxy up to 7.12.x HTTP Header http headers for scripting syntax (GHSA-vjrc-mh2v-45×6)

Post correlati

CVE-2024-6777 | Google Chrome up to 126.0.6478.126 Navigation use after free (ID 345640)

CVE-2025-11513 | code-projects E-Commerce Website 1.0 supplier_update.php supp_id sql injection

CVE-2024-42939 | YZNCMS 1.4.2 /index/index.html configured remarks cross site scripting

CVE-2024-22193 | vantage6 up to 4.1.x Task insecure storage of sensitive information (GHSA-rjmv-52mp-gjrr)