Homepage
About Snyk

proxy.py@0.2 vulnerabilities

⚡ Fast • 🪶 Lightweight • 0️⃣ Dependency • 🔌 Pluggable • 😈 TLS interception • 🔒 DNS-over-HTTPS • 🔥 Poor Mans VPN • ⏪ Reverse & ⏩ Forward • 👮🏿 Proxy Server framework • 🌐 Web Server framework • ➵ ➶ ➷ ➠ PubSub framework • 👷 Work acceptor & executor framework.

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the proxy.py package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Authentication Bypass

proxy.py is a ⚡⚡⚡Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on Network monitoring, controls & Application development, testing, debugging.

Affected versions of this package are vulnerable to Authentication Bypass. before_upstream_connection in AuthPlugin in http/proxy/auth.py accepts incorrect Proxy-Authorization header data because of a boolean confusion (and versus or).

How to fix Authentication Bypass?

Upgrade proxy.py to version 2.3.1 or higher.

[,2.3.1)
Go back to all versions of this package