amphp/http-client Header leakage on cross-domain redirects

Published: May 15, 2024
Updated: Jun 27, 2024
GHSA: <a href="https://github.com/advisories/GHSA-8jp9-mpv9-98rj" target="_blank" rel="noopener"> GHSA-8jp9-mpv9-98rj
Severity: Medium
Exploit:

amphp/http-client has a security weakness that might leak sensitive request headers from the initial request to the redirected host on cross-domain redirects, which were not removed correctly. Message::setHeaders does not replace the entire set of headers, but only operates on the headers matching the given array keys.