Description
mime_header.cc in Squid before 3.5.18 allows remote attackers to bypass intended same-origin restrictions and possibly conduct cache-poisoning attacks via a crafted HTTP Host header, aka a "header smuggling" issue.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Contact Form Lite 'sort_row.request.php' SQL Injection (1.0.7)
Internet Information Services Other Vulnerability (CVE-2000-0246)
WordPress Plugin Comment and Review Spam Control for WooCommerce Security Bypass (1.4.2)
WordPress Plugin Hot Files:File Sharing and Download Manager Cross-Site Scripting (1.0.0)
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-26034)