URL has been copied successfully!
29-Year-Old Squid Proxy Bug ‘Squidbleed’ Can Leak Cleartext HTTP Requests
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

29-Year-Old Squid Proxy Bug ‘Squidbleed’ Can Leak Cleartext HTTP Requests


Tags: ,

A heap over-read in the Squid web proxy can leak another user’s cleartext HTTP request, including any credentials or session tokens it carries, to anyone already allowed to send traffic through the same proxy.The bug traces to a 1997 FTP-parsing change and is still live in Squid’s default configuration. Researchers at Calif.io disclosed it in June and named it Squidbleed (

First seen on thehackernews.com

Jump to article: thehackernews.com/2026/06/29-year-old-squid-proxy-bug-squidbleed.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Google Cloud Security Threat Horizons Report #11 Is Out!
  2. Database Leak Reveals 184 Million Infostealer-Harvested Emails and Passwords
  3. 16 Billion Passwords Stolen From 320 Million+ Computers Leaked Online
  4. FortiBleed leak exposes Fortinet VPN credentials for 73,000 devices.