hackney
Simple HTTP client with HTTP/1.1, HTTP/2, and HTTP/3 support
Security Advisories for hackney in hex
High
12 days ago
Hackney vulnerable to atom-table exhaustion via unrecognized URL schemes
hex
hackney
High
12 days ago
Hackney: Per-chunk timeout with unbounded body accumulation enables slow-drip OOM
hex
hackney
Moderate
12 days ago
Hackney: Cross-origin Redirect Leaks Authorization, Cookie, and Request Body
hex
hackney
Moderate
12 days ago
Hackney has SSRF allowlist bypass in hackney_url:normalize/2 via percent-encoded host
hex
hackney
Low
12 days ago
Hackney has CRLF / header injection via unvalidated `domain` and `path` options
hex
hackney
High
12 days ago
Hackney has an infinite loop on non-token byte at start of an Alt-Svc entry
hex
hackney
Medium
about 1 month ago
HTTP/3 redirect handler leaks Authorization and Cookie headers to cross-origin redirect target in hackney
hex
hackney