Haproxy: >> Haproxy >> 2.6.15 Security Vulnerabilities
Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON requests.
CVSS Score
7.5
EPSS Score
0.002
Published
2025-11-19
HAProxy before 2.8.2 accepts # as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a path_end rule, such as routing index.html#.png to a static server.
CVSS Score
8.2
EPSS Score
0.0
Published
2023-11-28