Description
Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.
Remediation
References
Related Vulnerabilities
Joomla! Core 1.0.5 Security Bypass (1.0.5)
Oracle Application Server Other Vulnerability (CVE-2004-1707)
WordPress Plugin aoringo CAT setter Cross-Site Scripting (0.1.1)
WordPress Plugin Timetable and Event Schedule by MotoPress Unspecified Vulnerability (2.4.3)
WordPress Plugin Connections Business Directory Cross-Site Scripting (10.4.2)