T0Rchwo0D

**Name of the Vulnerable Software and Affected Versions** sinatra versions 0.0.0 and later **Description** The issue is related to Reliance on Untrusted Inputs in a Security Decision via the `X-Forwarded-Host` header. When making a request to a method with redirect applied, it is possible to trigger an Open Redirect Attack by inserting an arbitrary address into this header. If used for caching purposes, such as with servers like Nginx, or as a reverse proxy, without handling the `X-Forwarded-Host` header, attackers can potentially exploit Cache Poisoning or Routing-based SSRF. **Recommendations** For sinatra versions 0.0.0 and later, consider handling the `X-Forwarded-Host` header properly to prevent exploitation. As a temporary workaround, restrict access to the vulnerable module or function that processes the `X-Forwarded-Host` header until a patch is available. Additionally, avoid using the `X-Forwarded-Host` header for security decisions without proper validation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Vapor versions prior to 4.84.2 **Description** There is a denial of service issue impacting all users of affected versions of Vapor, an HTTP web framework for Swift. The HTTP1 error handler closed connections when HTTP parse errors occurred instead of passing them on. This issue causes immediate termination of the server process due to API misuse, resulting in an immediately recoverable service interruption. There is no corruption of process state and no risk of data leakage or unauthorized code execution. **Recommendations** For versions prior to 4.84.2, update to Vapor release 4.84.2 to resolve the issue. As a temporary workaround, consider implementing error handling mechanisms to prevent server process termination due to HTTP parse errors. However, the most effective solution is to update to the fixed version.

**Name of the Vulnerable Software and Affected Versions** github.com/gin-gonic/gin versions prior to 1.9.0 **Description** The issue is related to Improper Input Validation, allowing an attacker to use a specially crafted request via the `X-Forwarded-Prefix` header, potentially leading to cache poisoning. Although this issue does not pose a significant threat on its own, it can serve as an input vector for other more impactful vulnerabilities. Successful exploitation may depend on the server configuration and whether the header is used in the application logic. **Recommendations** For versions prior to 1.9.0, update to version 1.9.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `X-Forwarded-Prefix` header in the application logic to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Apache JSPWiki versions prior to 2.11.3 **Description** A carefully crafted invocation on the Image plugin could trigger a CSRF issue, allowing a group privilege escalation of the attacker's account. This could also be used to modify the email associated with the attacked account, and then a reset password request from the "login page" endpoint. **Recommendations** For versions prior to 2.11.3, update to version 2.11.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the Image plugin until a patch is available. Avoid using the vulnerable Image plugin functionality in the affected API endpoints until the issue is resolved.