Use of Less Trusted Source
Overview Affected versions of this package are vulnerable to Use of Less Trusted Source via the handling of X-Forwarded-For or Client-Ip headers. An attacker can falsify their IP address in log files by specifying an arbitrary IP in these headers while making HTTP requests. Remediation Upgrade...