CVE-2022-23607MEDIUMCVSS 6.5≥ 21.1.0, < 22.1.02022-02-01
CVE-2022-23607 [MEDIUM] CWE-200 CVE-2022-23607: treq is an HTTP library inspired by requests but written on top of Twisted's Agents. Treq's request
treq is an HTTP library inspired by requests but written on top of Twisted's Agents. Treq's request methods (`treq.get`, `treq.post`, etc.) and `treq.client.HTTPClient` constructor accept cookies as a dictionary. Such cookies are not bound to a single domain, and are therefore sent to *every* domain ("supercookies"). This can potentially cause sensit
nvd