Description Envoy master between 2d69e30 and 3b5acb2 may fail to parse request URL that requires host canonicalization. Remediation References CVE-2020-25018 Related Vulnerabilities WordPress Plugin IMPress for IDX Broker Cross-Site Scripting (3.0.5) PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11583) Joomla! Core 3.x.x Security Bypass (3.2.0 - 3.9.4) WordPress Plugin Adminer Security Bypass (1.4.5) WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Arbitrary File Upload (1.2.5) Severity High Classification CVE-2020-25018 Tags Missing Update Known Vulnerabilities