{"vulnerability": "CVE-2021-22960", "sightings": [{"uuid": "15c4e73b-d72e-433b-8c7e-bf0ba963b8f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22960", "type": "seen", "source": "https://t.me/cibsecurity/31775", "content": "\u203c CVE-2021-22960 \u203c\n\nThe parse function in llhttp < 2.1.4 and < 6.0.6. ignores chunk extensions when parsing the body of chunked requests. This leads to HTTP Request Smuggling (HRS) under certain conditions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-03T23:23:25.000000Z"}]}