Product
benoitc hackney
10 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-47077
CVE-2026-47076
CVE-2026-47075
CVE-2026-47073
CVE-2026-47072
CVE-2026-47071
CVE-2026-47070
CVE-2026-47069
CVE-2026-47067
CVE-2026-47066
>= 2.0.0 and < 4.0.1
Allocation of Resources Without Limits or Throttling vulnerability in benoitc hackney allows Flooding. hackney_h3:await_response_l
>= 0.13.0 and < 4.0.1
Interpretation Conflict vulnerability in benoitc hackney allows Server Side Request Forgery. hackney_url:normalize/2 URL-decodes t
< 4.0.1
Improper Neutralization of CRLF Sequences vulnerability in benoitc hackney allows HTTP Request Splitting. hackney does not percent
>= 2.0.0 and < 4.0.1
Allocation of Resources Without Limits or Throttling vulnerability in benoitc hackney allows Flooding. The WebSocket client in src
>= 2.0.0 and < 4.0.1
Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in benoitc hackney allows HTTP Request/Response Splitti
>= 0.10.0 and < 4.0.1
Uncontrolled Resource Consumption vulnerability in benoitc hackney allows Flooding. The SOCKS5 transport in src/hackney_socks5.erl
>= 3.1.1 and < 4.0.1
Sensitive Data Exposure vulnerability in benoitc hackney allows Retrieve Embedded Sensitive Data. The HTTP/3 redirect handler in s
>= 0.9.0 and < 4.0.1
Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in benoitc hackney allows HTTP Response Splitting. The
>= 2.0.0 and < 4.0.1
Allocation of Resources Without Limits or Throttling vulnerability in benoitc hackney allows Flooding. The URL parser in src/hackn
>= 2.0.0 and < 4.0.1
Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in benoitc hackney allows Excessive Allocation. The Alt-Svc r