guzzlehttp/psr7
php · guzzlehttp/psr7Heads-up
guzzlehttp/psr7 CRLF Injection via Host Header
guzzlehttp/psr7 now rejects ASCII control characters, whitespace, and DEL in first-party URI host components, preventing CRLF inje
12 Jun 2026 · schedule it
php · guzzlehttp/psr7Heads-up
guzzlehttp/psr7: Malformed Host header misinterpretation in URI construction
guzzlehttp/psr7 improperly interpreted malformed Host header values when constructing request URIs from inbound request data, pote
12 Jun 2026 · schedule it