43 matches found
PT-2024-20530 · Bref · Bref
Name of the Vulnerable Software and Affected Versions: Bref versions prior to 2.1.13 Description: The issue arises when Bref is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface. In this scenario, the Lambda event is converted to a PSR7 object. During the...
Bref Security Breach
Bref is an open source project by Matthieu Napoli Individual Developer that helps you go serverless on AWS using PHP. A security vulnerability exists in versions prior to Bref 2.1.13 that stems from not handling multiple value headers when Bref is used in conjunction with a v2-formatted API gatew...
Bref Resource Management Error Vulnerability
Bref is an open source project by Matthieu Napoli Individual Developer that helps you go serverless on AWS using PHP. A resource management error vulnerability exists in versions prior to Bref 2.1.13 that stems from not deleting temporary files after processing a request...