1Kas
CVE-2024-21510 | sinatra Header X-Forwarded-Host reliance on untrusted inputs in a security decision (SNYK-RUBY-SINATRA-6483832)
A vulnerability, which was classified as problematic, was found in sinatra. Affected is an unknown function of the component Header Handler. The manipulation of the argument X-Forwarded-Host leads to reliance on untrusted inputs in a security decision. This vulnerability is traded as CVE-2024-21510. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.