Search Vulnerabilities

Angular: Request Credential & Cache Policy Stripping in Angular Service Worker

Angular Service Worker Policy-Bypass & Credential-Stripping Vulnerabilities

Angular: Information Leak via Default Caching of Credentialed Requests in HttpTransferCache

undici vulnerable to cross-user information disclosure via shared cache whitespace bypass

Improper Search Cache Isolation for Scoped Search API Keys in Typesense

Spring Framework Information Disclosure via Static Resource Cache in Spring MVC and WebFlux

Potential exposure of private data via missing Vary: Authorization in UpdateCacheMiddleware

Discourse: Cached outdated summaries can leak removed content

Hono: Cache Middleware ignores Vary: Authorization / Vary: Cookie leading to cross-user cache leakage

Potential exposure of private data due to incorrect handling of Vary: * in UpdateCacheMiddleware

Static resource cache poisoning in Spring MVC and WebFlux

IBM Planning Analytics Information Disclosure

Flask session does not add `Vary: Cookie` header when accessed in some ways

Mastodon's signature-dependent ActivityPub collection responses cached under signature-independent keys (Web Cache Poisoning via `Rails.cache`)

Hono cache middleware ignores "Cache-Control: private" leading to Web Cache Deception

axios-cache-interceptor Vulnerable to Cache Poisoning via Ignored HTTP Vary Header

Android App "Brother iPrint&Scan" versions 6

authkit-nextjs may let session cookies be cached in CDNs

Discourse is missing Cache-Control response header on error responses

Libsoup: improper handling of http vary header in libsoup caching