GHSA-cm46-gqf4-mv4f: Orchid Platform has Method Exposure Vulnerability in Modals

GHSA-xvg8-m4x3-w6xr: matrix-js-sdk has insufficient MXC URI validation which allows client-side path traversal

GHSA-xq3w-v528-46rv: Denial of Service attack on windows app using netty

GHSA-cxwf-qc32-375f: Decidim-Awesome has SQL injection in AdminAccountability

GHSA-gppm-hq3p-h4rp: Git credentials are exposed in Atlantis logs

amphp/http-client has a security weakness that might leak sensitive request headers from the initial request to the redirected host on cross-domain redirects, which were not removed correctly. `Message::setHeaders` does not replace the entire set of headers, but only operates on the headers matching the given array keys.



**amphp/http-client Header leakage on cross-domain redirects**

Moderate severity GitHub Reviewed Published May 15, 2024 to the GitHub Advisory Database

Headline

GHSA-8jp9-mpv9-98rj: amphp/http-client Header leakage on cross-domain redirects

ghsa: Latest News