@reactphp : Today, we're publishing CVE-25022-36032 which has been fixed two weeks ago: ReactPHP's HTTP server parses encoded cookie names so malicious __Host- and __Secure- cookies can be sent. github.com/reactphp/http/… All users are encouraged to upgrade immediately. • TwiCopy

ReactPHP

@reactphp

+ Follow

Event-driven, non-blocking I/O with PHP

ID: 584284287

linkhttp://reactphp.org calendar_today18-05-2012 22:13:49

1,1K Tweet

7,7K Followers

8 Following

ReactPHP

@reactphp

3 years ago

Today, we're publishing CVE-2022-36032 which has been fixed two weeks ago: ReactPHP's HTTP server parses encoded cookie names so malicious __Host- and __Secure- cookies can be sent. github.com/reactphp/http/… All users are encouraged to upgrade immediately.

thumb_up_off_alt9

chat_bubble_outline0

repeat6

shareShare