Vulnerabilities > Litespeedtech > Openlitespeed > 1.5.10

DATE CVE VULNERABILITY TITLE RISK
2023-08-14 CVE-2023-40518 Unspecified vulnerability in Litespeedtech Openlitespeed
LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP request headers.
network
low complexity
litespeedtech
7.5
2020-01-06 CVE-2020-5519 Improper Input Validation vulnerability in Litespeedtech Openlitespeed
The WebAdmin Console in OpenLiteSpeed before v1.6.5 does not strictly check request URLs, as demonstrated by the "Server Configuration > External App" screen.
network
low complexity
litespeedtech CWE-20
7.5