Description
Caddy before 0.10.13 mishandles TLS client authentication, as demonstrated by an authentication bypass caused by the lack of the StrictHostMatching mode.
Remediation
References
Related Vulnerabilities
WordPress Plugin Ads in bottom right Multiple Vulnerabilities (1.0)
Oracle JRE CVE-2012-0497 Vulnerability (CVE-2012-0497)
MySQL CVE-2023-22078 Vulnerability (CVE-2023-22078)
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-29208)
Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2015-2750)