Wshanks

**Name of the Vulnerable Software and Affected Versions** Python Charmers Future versions 0.18.2 and earlier **Description** The issue is related to improper input validation when handling the Set-Cookie header, allowing a remote attacker to send a specially crafted HTTP request and perform a denial of service attack using regular expressions, specifically a ReDoS attack. This can lead to excessive CPU usage. **Recommendations** For versions 0.18.2 and earlier, update to version 0.18.3 to resolve the issue. As a temporary workaround, consider restricting access to the Set-Cookie header to minimize the risk of exploitation. Avoid using the `Set-Cookie` header in the affected API endpoint until the issue is resolved.