A vulnerability, which was classified as critical , was found in Tinyproxy up to 1.11.3 . Affected by this vulnerability is an unknown functionality of the component Header Handler . The manipulation of the argument Host results in authentication bypass by spoofing. This vulnerability was named CVE-2026-55202 . The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.