Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Guzzlephp Subscribe
Filtered by product Psr-7
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-24775 2 Drupal, Guzzlephp 2 Drupal, Psr-7 2022-03-28 5.0 MEDIUM 7.5 HIGH
guzzlehttp/psr7 is a PSR-7 HTTP message library. Versions prior to 1.8.4 and 2.1.1 are vulnerable to improper header parsing. An attacker could sneak in a new line character and pass untrusted values. The issue is patched in 1.8.4 and 2.1.1. There are currently no known workarounds.