Description Envoy master between 2d69e30 and 3b5acb2 may fail to parse request URL that requires host canonicalization. Remediation References CVE-2020-25018 Related Vulnerabilities WordPress Plugin WP-Paginate Cross-Site Scripting (2.1.3) WordPress Plugin Sell Photo Cross-Site Scripting (1.0.5) Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8831) Vanilla Forums Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4954) WordPress Plugin Chained Quiz Multiple Cross-Site Scripting Vulnerabilities (0.9.8) Severity High Classification CVE-2020-25018 Tags Missing Update Known Vulnerabilities