undici is vulnerable to CRLF Injection. The vulnerability exists because the headers.host
string does not properly sanitize the HTTP header in the processHeader
function in request.js
, allowing an attacker to redirect to a malicious URL through a malicious HTTP header.