Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
guzzlephp psr-7 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-24775
guzzlehttp/psr7 is a PSR-7 HTTP message library. Versions before 1.8.4 and 2.1.1 are vulnerable to improper header parsing. An attacker could sneak in a new line character and pass untrusted values. The issue is patched in 1.8.4 and 2.1.1. There are currently no known workarounds...
Drupal Drupal
Guzzlephp Psr-7
7.5
CVSSv3
CVE-2023-29197
guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Affected versions are subject to improper header parsing. An attacker could sneak in a newline (\n) into both the header names and values. While the specification states that \r\n\r\n is used to terminate the ...
Guzzlephp Psr-7
Fedoraproject Fedora 37
Fedoraproject Fedora 38
2 Github repositories
6.5
CVSSv3
CVE-2023-29530
Laminas Diactoros provides PSR HTTP Message implementations. In versions 2.18.0 and prior, 2.19.0, 2.20.0, 2.21.0, 2.22.0, 2.23.0, 2.24.0, and 2.25.0, users who create HTTP requests or responses using laminas/laminas-diactoros, when providing a newline at the start or end of a he...
Guzzlephp Psr-7
Getlaminas Laminas-diactoros 2.19.0
Getlaminas Laminas-diactoros 2.20.0
Getlaminas Laminas-diactoros 2.21.0
Getlaminas Laminas-diactoros 2.22.0
Getlaminas Laminas-diactoros 2.23.0
Getlaminas Laminas-diactoros 2.24.0
Getlaminas Laminas-diactoros 2.25.0
Getlaminas Laminas-diactoros
Fedoraproject Fedora 38
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started