guzzlehttp/guzzle Security Advisories for 4.0.2 (6)
-
Change in port should be considered a change in origin
Affected version: >=7,<7.4.5|>=4,<6.5.8
Reported by:
GitHub, FriendsOfPHP/security-advisories -
CURLOPT_HTTPAUTH option not cleared on change of origin
Affected version: >=7,<7.4.5|>=4,<6.5.8
Reported by:
GitHub, FriendsOfPHP/security-advisories -
Fix failure to strip Authorization header on HTTP downgrade
Affected version: >=7,<7.4.4|>=4,<6.5.7
Reported by:
GitHub, FriendsOfPHP/security-advisories -
Failure to strip the Cookie header on change in host or HTTP downgrade
Affected version: >=7,<7.4.4|>=4,<6.5.7
Reported by:
GitHub, FriendsOfPHP/security-advisories -
Reported by:
GitHub, FriendsOfPHP/security-advisories -
HTTP Proxy header vulnerability
Affected version: >=6,<6.2.1|>=4.0.0-rc2,<4.2.4|>=5,<5.3.1
Reported by:
GitHub, FriendsOfPHP/security-advisories