CVE-2026-47737 (puma): Puma PROXY Protocol v1 Accepts Repeated Protocol Headers on Persistent Connections
Originally appeared on RubySec.## Impact Puma is vulnerable to source IP spoofing when set_remote_address proxy_protocol: :v1 is enabled and persistent connections are used. PROX...