search

yaoweibin / nginx_ajp_module

support AJP protocol proxy with Nginx
http://github.com/yaoweibin/nginx_ajp_module
246 stars 60 forks source link

Add secret support for AJP protocol to solve CVE-2020-1938. #47

Closed yangdaolin closed 4 years ago

yangdaolin commented 4 years ago

CVE-2020-1938: Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability (CNVD-2020-10487) To solve this problem, add secret support.

yaoweibin commented 4 years ago

LGTM