Summary #

Netsparker detected that your website uses the HAProxy. HAProxy is open source software that provides a high availability load balancer and proxy server for TCP and HTTP-based applications.

Impact #
This issue is reported as additional information only. There is no direct impact arising from this issue. However, Netsparker was not able to identify the HAProxy version that you are currently using. Please make sure that it is fully patched and up-to-date. Notable vulnerabilities that were found in recent years include CVE-2019-14241 (HAProxy through 2.0.2 allows attackers to cause a denial of service (ha_panic) via vectors related to htx_manage_client_side_cookies in proto_htx.c.) and CVE-2019-11323 (Mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys.)
Classifications #
CAPEC-224, CWE-200, ISO27001-A.18.1.3, WASC-45
Vulnerability Index

Vulnerability Index

You can search and find all vulnerabilities

OR

Search Vulnerability

Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO