USN-5551-1: mod-wsgi vulnerability
It was discovered that mod-wsgi did not correctly remove the X-Client-IP
header when processing requests from untrusted proxies. A remote attacker
could use this issue to pass the header to WSGI applications, contrary
to expectations.
Source: USN-5551-1: mod-wsgi vulnerability
Leave a Reply