Endpoint Vulnerability

CVE-2018-18074python3-requests: python-requests: Redirect from HTTPS to HTTP does not remove Authorization header [epel-7]

Description

python-requests: Redirect from HTTPS to HTTP does not remove Authorization header [epel-7]

Affected Products

python3-requests

References

CVE-2018-18074,