github.com/caddyserver/caddy/v2/modules/caddyhttp/reverseproxy (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/caddyserver/caddy/v2/modules/caddyhttp/reverseproxy, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2026-30851 — CVSS 8.1 (high): Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forward_auth copy_headers…