Severity: Important Vendor: The Apache Software Foundation
Versions Affected: OFBiz 17.12.01 Description: Apache OFBiz is vulnerable to Host header injection by accepting arbitrary hosts Mitigation: Upgrade to 17.12.03 or manually apply the commit at OFBIZ-11583 ---- Credit: Pradeep Jairamani <pradeepjairaman...@gmail.com> References: https://ofbiz.apache.org/security.html
