Description
** DISPUTED ** Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no protection against multiple (/) at the beginning of URI path which may leads to information disclosure. NOTE: this is disputed by a third party because the http.server.html documentation page states "Warning: http.server is not recommended for production. It only implements basic security checks."
Remediation
References
Related Vulnerabilities
WordPress 4.4.x Cross-Site Request Forgery (4.4 - 4.4.17)
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-41585)
Joomla CVE-2021-26031 Vulnerability (CVE-2021-26031)
WordPress Plugin Translate WordPress-Google Language Translator Cross-Site Scripting (5.0.05)
Internet Information Services Other Vulnerability (CVE-2002-0073)