Description
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling
Remediation
References
Related Vulnerabilities
WordPress Plugin Broken Link Manager SQL Injection (0.6.5)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1915)
MySQL Cleartext Transmission of Sensitive Information Vulnerability (CVE-2017-3305)
WordPress Plugin Accept Donations with PayPal Cross-Site Request Forgery (1.3)