Vulnerabilities > Swoole > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-07-20 CVE-2020-24275 Injection vulnerability in Swoole 4.5.2
A HTTP response header injection vulnerability in Swoole v4.5.2 allows attackers to execute arbitrary code via supplying a crafted URL.
network
low complexity
swoole CWE-74
6.5
6.5
2019-08-23 CVE-2019-15518 Path Traversal vulnerability in Swoole
Swoole before 4.2.13 allows directory traversal in swPort_http_static_handler.
network
low complexity
swoole CWE-22
5.3
5.3