Search for packages
| purl | pkg:maven/org.apache.httpcomponents/httpclient@4.5.9 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-mrdq-9pb2-3qb5
Aliases: CVE-2020-13956 GHSA-7r82-7xv7-xcpj |
Cross-site scripting in Apache HttpClient Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:14:40.499022+00:00 | GitLab Importer | Affected by | VCID-mrdq-9pb2-3qb5 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.httpcomponents/httpclient/CVE-2020-13956.yml | 38.4.0 |
| 2026-04-11T22:26:47.220559+00:00 | GitLab Importer | Affected by | VCID-mrdq-9pb2-3qb5 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.httpcomponents/httpclient/CVE-2020-13956.yml | 38.3.0 |
| 2026-04-02T22:38:30.900225+00:00 | GitLab Importer | Affected by | VCID-mrdq-9pb2-3qb5 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.httpcomponents/httpclient/CVE-2020-13956.yml | 38.1.0 |
| 2026-04-01T16:55:56.144141+00:00 | GitLab Importer | Affected by | VCID-mrdq-9pb2-3qb5 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.httpcomponents/httpclient/CVE-2020-13956.yml | 38.0.0 |