Tag: vulnerability

Trust No One: The Perils of Trusting User Input

May 21, 2018

Occasionally, we like to highlight interesting or significant security issues that users of NGINX Open Source and NGINX Plus might encounter. Application stacks are complex and it’s very easy to overlook obscure or unexpected ways that common features can be exploited. NGINX and NGINX Plus are a powerful way to both provide access to these features and…

Mitigating the HTTPoxy Vulnerability with NGINX

July 18, 2016

FastCGI, CVE, vulnerability, security, exploit, CGI

On July 18th, a vulnerability named ‘HTTPoxy’ was announced, affecting some server‑side web applications that run in CGI or CGI‑like environments, such as some FastCGI configurations. Languages known to be affected so far include PHP, Python, and Go. A number of CVEs have been assigned, covering specific languages and CGI implementations: Apache HTTP Server (CVE-2016-5387)…

TRY NGINX PLUS!

Download a 30 day free trial and see what you've been missing.

* = Required

We'll take care of your data.

Got a question for the NGINX team?

< back

* = Required

Got a question for the NGINX team?

CALL US AT 1-800-915-9122

START A LIVE CHAT

SEND US A MESSAGE

Your Cookie Settings

Have a 🍪? :)

Tag: vulnerability

Trust No One: The Perils of Trusting User Input

Mitigating the HTTPoxy Vulnerability with NGINX

TRY NGINX PLUS!

Download a 30 day free trial and see what you've been missing.

Got a question for the NGINX team?

Got a question for the NGINX team?

Tag: vulnerability

TRY NGINX PLUS!

Download a 30 day free trial and see what you've been missing.

Got a question for the NGINX team?

Got a question for the NGINX team?

Tags