Styx
1 CVEs
product
Monthly
Hotels Styx through 1.0.0.beta8 allows HTTP response splitting due to CRLF Injection. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Code Injection
Styx
NVD
GitHub
CVSS 3.1
6.5
EPSS
1.2%
CVE-2020-6858
Maven
EPSS 1%
CVSS 6.5
MEDIUM
POC
PATCH
This Month
Hotels Styx through 1.0.0.beta8 allows HTTP response splitting due to CRLF Injection. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Code Injection
Styx
NVD
GitHub