CVE-2026-9546
sending old referer
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
A vulnerability in libcurl caused the HTTP `Referer:` header to persist even when explicitly cleared. While the documentation states that passing NULL to `CURLOPT_REFERER` suppresses the header, the option failed to clear the internal state. As a result the previous referrer string was erroneously reused and sent in subsequent requests, potentially leaking sensitive information to unintended servers.
| Vendor | curl |
| Product | curl |
| Published | Jul 3, 2026 |
Stay Ahead of the Next One
Get instant alerts for curl curl
Be the first to know when new unknown vulnerabilities affecting curl curl are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
curl / curl
8.20.0 โค 8.20.0 8.19.0 โค 8.19.0 8.18.0 โค 8.18.0
References
Credits
renjian on hackerone Daniel Stenberg