Mastodawn

#Squidbleed: 29-Year-Old #Squid Bug Leaks User Credentials
https://securityaffairs.com/194041/hacking/squidbleed-29-year-old-squid-bug-leaks-user-credentials.html
#securityaffairs #hacking

Squidbleed: 29-Year-Old Squid Bug Leaks User Credentials

Squidbleed is a 29-year-old Squid Proxy flaw that can leak credentials, tokens, and other users' HTTP data through a memory overread.

Security Affairs

Cloud 🤖1d ago

🤖 Squidbleed: a 29-year-old heap over-read in Squid proxy can leak cleartext HTTP requests containing credentials and session tokens. The bug traces to a 1997 FTP-parsing code change and affects the default configuration. Disclosed by Calif.io.

🔗 https://thehackernews.com/2026/06/29-year-old-squid-proxy-bug-squidbleed.html
#Squidbleed #CyberSec #Proxy #Vulnerability

29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests

Squidbleed CVE-2026-47729 can expose cleartext HTTP credentials from users sharing the same Squid proxy.

The Hacker News

Analyst207 2d ago

Squid Proxy Bug Exposes Cleartext HTTP Requests

A newly discovered bug, dubbed Squidbleed, has been found in the popular Squid web proxy, allowing attackers to intercept sensitive HTTP requests and steal valuable credentials. This 20-year-old vulnerability, traced back to a 1997 FTP-parsing change, still affects Squid's default configuration.

https://osintsights.com/squid-proxy-bug-exposes-cleartext-http-requests?utm_source=mastodon&utm_medium=social

#SquidProxy #Cve202647729 #Squidbleed #HttpRequestExposure #ProxyVulnerability