amphp/http-client Header leakage on cross-domain redirects

2024-05-1517:48:10

Google

osv.dev

security weakness

sensitive request headers

cross-domain redirects

software

7 High

AI Score

Confidence

Low

JSON

amphp/http-client has a security weakness that might leak sensitive request headers from the initial request to the redirected host on cross-domain redirects, which were not removed correctly. Message::setHeaders does not replace the entire set of headers, but only operates on the headers matching the given array keys.

CPENameOperatorVersion
amphp/http-clienteq4.1.0-rc1
amphp/http-clienteq4.3.0
amphp/http-clienteq4.1.0
amphp/http-clienteq4.0.0
amphp/http-clienteq4.2.0
amphp/http-clienteq4.2.1
amphp/http-clienteq4.3.1
amphp/http-clienteq4.2.2

Name	Operator	Version
amphp/http-client	eq	4.1.0-rc1
amphp/http-client	eq	4.3.0
amphp/http-client	eq	4.1.0
amphp/http-client	eq	4.0.0
amphp/http-client	eq	4.2.0
amphp/http-client	eq	4.2.1
amphp/http-client	eq	4.3.1
amphp/http-client	eq	4.2.2

References

github.com/amphp/http-client

github.com/amphp/http-client/commit/fa7925363e6d5a0d0d337e2e6eb1affb93cf226e

github.com/amphp/http-client/releases/tag/v4.4.0

github.com/FriendsOfPHP/security-advisories/blob/master/amphp/http-client/2020-06-16.yaml

7 High

AI Score

Confidence

Low

JSON