CVE-2020-11709

Name of the Vulnerable Software and Affected Versions cpp-httplib versions 0.5.8 and earlier

Description The issue arises from the lack of filtering for r in parameters passed to the set redirect and set header functions, potentially leading to CRLF injection and HTTP response splitting in specific contexts.

Recommendations For cpp-httplib versions 0.5.8 and earlier, consider disabling the set redirect and set header functions until a patch is available to prevent potential CRLF injection and HTTP response splitting attacks. Restrict access to these functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.