HTTP header injection #355
Description
I think http.rb may be vulnerable to something similar to this:
http://seclists.org/fulldisclosure/2016/Jun/63
I don't think HTTP::URI is properly sanitizing the URL such this won't happen.
{{ message }}
I think http.rb may be vulnerable to something similar to this:
http://seclists.org/fulldisclosure/2016/Jun/63
I don't think HTTP::URI is properly sanitizing the URL such this won't happen.