kennethreitz/requests

kennethreitz/requests

requests.readthedocs.io

Releases141

Frequency3 weeks 4 days

Last Release over 5 years ago

Stars309

A simple, yet elegant HTTP library.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2015-2296 ↗	Mar 18, 2015Wednesday, 18 March 2015, 16:59	—	6.8 MEDIUM
The resolve_redirects function in sessions.py in requests 2.1.0 through 2.5.3 allows remote attackers to conduct session fixation attacks via a cookie without a host value in a redirect.
CVE-2014-1829 ↗	Oct 15, 2014Wednesday, 15 October 2014, 14:55	—	5 MEDIUM
Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request.
CVE-2014-1830 ↗	Oct 15, 2014Wednesday, 15 October 2014, 14:55	—	5 MEDIUM
Requests (aka python-requests) before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request.