0X3Xploit

**Name of the Vulnerable Software and Affected Versions** cpp-httplib versions prior to 0.37.1 **Description** cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. When using the streaming API (`httplib::stream::Get`, `httplib::stream::Post`, etc.), the library directly calls `std::stoull()` on the `Content-Length` header value received from a server without input validation or exception handling. `std::stoull()` throws `std::invalid argument` for non-numeric strings and `std::out of range` for values exceeding `ULLONG MAX`. Because these exceptions are not handled, the C++ runtime calls `std::terminate()`, terminating the process with `SIGABRT`. Any server the client connects to—including those reached via HTTP redirects or through man-in-the-middle positions—can crash the client application with a single HTTP response. No authentication or user interaction is required, and the crash is deterministic and immediate. **Recommendations** Versions prior to 0.37.1 should be updated to version 0.37.1 or later.

**Name of the Vulnerable Software and Affected Versions** cpp-httplib versions prior to 0.35.0 **Description** cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. When a request handler throws a C++ exception and a custom exception handler has not been registered using `set exception handler()`, the library includes the exception message in an HTTP response header named `EXCEPTION WHAT`. This header is sent to the client without authentication or specific configuration. This can lead to the leakage of internal exception messages to any client. **Recommendations** Versions prior to 0.35.0 should be updated to version 0.35.0 or later. Consider registering a custom exception handler using the `set exception handler()` function to prevent the leakage of internal exception messages.

**Name of the Vulnerable Software and Affected Versions** cpp-httplib versions prior to 0.37.2 **Description** cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. When a cpp-httplib client is configured with a proxy and `set follow location(true)`, HTTPS redirects can silently disable TLS certificate and hostname verification on the new connection. The client will accept any certificate presented by the redirect target—expired, self-signed, or forged—without raising an error or notifying the application. A network attacker positioned to return a redirect response can intercept the subsequent HTTPS connection, potentially including credentials or session tokens. **Recommendations** Update cpp-httplib to version 0.37.2 or later.