18
18
Django's own built-in parsing of the Host header is, however, still vulnerable,
19
19
as was reported to us recently. The Host header parsing in Django 1.3.3 and
21
21
incorrectly handling username/password information in the header. Thus, for
22
22
example, the following Host header would be accepted by Django when running on