CNNVD-202601-4618 Information

CNNVD ID

CNNVD-202601-4618

Related CVE

CVE-2026-24489

• CNNVD Published: 2026-01-27

Description (Chinese)

gakido是Happy Hacking Space开源的一个高性能HTTP客户端。 gakido 0.1.1之前版本存在注入漏洞，该漏洞源于用户提供的标头值和名称中存在CRLF序列，可能导致HTTP标头注入。

Description (English)

Gakido is a high-performance HTTP client for Happy Hacking Space. There was an injection loophole in the pre-gakido 0.1.1, which resulted from the existence of a CRLF sequence in the header and name provided by the user, which could lead to HTTP header injection.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

Happy Hacking Space

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/HappyHackingSpace/gakido/commit/369c67e67c63da510c8a9ab021e54a92ccf1f788 https://github.com/HappyHackingSpace/gakido/releases/tag/v0.1.1-1bc6019 https://github.com/HappyHackingSpace/gakido/security/advisories/GHSA-gcgx-chcp-hxp9

Patch

https://github.com/HappyHackingSpace/gakido/releases