Openresty Lua Nginx Module
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Openresty Lua Nginx Module.
By the Year
In 2026 there have been 0 vulnerabilities in Openresty Lua Nginx Module. Last year, in 2025 Lua Nginx Module had 1 security vulnerability published. Right now, Lua Nginx Module is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 1 | 5.30 |
It may take a day or so for new Lua Nginx Module vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Openresty Lua Nginx Module Security Vulnerabilities
OpenResty lua-nginx-module <=0.10.26: HTTP Request Smuggling via HEAD
CVE-2024-33452
- April 22, 2025
An issue in OpenResty lua-nginx-module v.0.10.26 and before allows a remote attacker to conduct HTTP request smuggling via a crafted HEAD request.
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty
CVE-2020-36309
5.3 - Medium
- April 06, 2021
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty allows unsafe characters in an argument when using the API to mutate a URI, or a request or response header.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Openresty Lua Nginx Module or by Openresty? Click the Watch button to subscribe.
