PT-2022-19495 · Guzzle · Guzzle
Name of the Vulnerable Software and Affected Versions: Guzzle versions prior to 6.5.6 and 7.4.3 Description: The issue is related to the cookie middleware in Guzzle, a PHP HTTP client. It does not check if the cookie domain equals the domain of the server that sets the cookie via the Set-Cookie...