Authorization Header Exposure in urllib3 Cross-Origin Redirects

Authorization Header Exposure in urllib3 Cross-Origin Redirects

CVE-2018-20060 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect (i.e., a redirect that differs in host, port, or scheme). This can allow for credentials in the Authorization header to be exposed to unintended hosts or transmitted in cleartext.

Learn more about our Web Application Penetration Testing UK.