github.com/cloudfoundry/gorouter is vulnerable to man-in-the-middle (MitM) attacks. The vulnerability exists due to the lack of validation on the value of the X-Forwarded-Proto
header, allowing the client to use a http
connection and be prone to MitM attacks.