Description
gunicorn version 19.4.5 contains a CWE-113: Improper Neutralization of CRLF Sequences in HTTP Headers vulnerability in "process_headers" function in "gunicorn/http/wsgi.py" that can result in an attacker causing the server to return arbitrary HTTP headers. This vulnerability appears to have been fixed in 19.5.0.
Remediation
References
Related Vulnerabilities
WordPress Plugin Slimstat Analytics Cross-Site Scripting (3.9.1)
WordPress Plugin Social Tape Cross-Site Request Forgery (1.0)
MySQL CVE-2012-1697 Vulnerability (CVE-2012-1697)
ownCloud Improper Input Validation Vulnerability (CVE-2014-2585)
WordPress Plugin WP Mailto Links-Manage Email Links Cross-Site Scripting (2.0.1)