Skip to content

amphp/http-client Header leakage on cross-domain redirects

Moderate severity GitHub Reviewed Published May 15, 2024 to the GitHub Advisory Database

Package

composer amphp/http-client (Composer)

Affected versions

>= 4.0.0, < 4.4.0

Patched versions

4.4.0

Description

amphp/http-client has a security weakness that might leak sensitive request headers from the initial request to the redirected host on cross-domain redirects, which were not removed correctly. Message::setHeaders does not replace the entire set of headers, but only operates on the headers matching the given array keys.

References

Published to the GitHub Advisory Database May 15, 2024
Reviewed May 15, 2024

Severity

Moderate
4.0
/ 10

CVSS base metrics

Attack vector
Network
Attack complexity
High
Privileges required
None
User interaction
None
Scope
Changed
Confidentiality
None
Integrity
Low
Availability
None
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

Weaknesses

No CWEs

CVE ID

No known CVE

GHSA ID

GHSA-8jp9-mpv9-98rj

Source code

Checking history
See something to contribute? Suggest improvements for this vulnerability.