Search for packages
| purl | pkg:composer/bugsnag/bugsnag-laravel@1.1.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-zawz-vky5-tkgt
Aliases: CVE-2016-5385 GHSA-m6ch-gg5f-wxx3 |
Improper Access Control PHP does not attempt to address RFC section namespace conflicts and therefore does not protect applications from the presence of untrusted client data in the `HTTP_PROXY` environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, as demonstrated by (1) an application that makes a getenv('HTTP_PROXY') call or (2) a CGI configuration of PHP, aka an `httpoxy` issue. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T20:34:19.477772+00:00 | GitLab Importer | Affected by | VCID-zawz-vky5-tkgt | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/bugsnag/bugsnag-laravel/CVE-2016-5385.yml | 38.4.0 |
| 2026-04-11T21:44:47.628362+00:00 | GitLab Importer | Affected by | VCID-zawz-vky5-tkgt | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/bugsnag/bugsnag-laravel/CVE-2016-5385.yml | 38.3.0 |
| 2026-04-02T21:58:51.246786+00:00 | GitLab Importer | Affected by | VCID-zawz-vky5-tkgt | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/bugsnag/bugsnag-laravel/CVE-2016-5385.yml | 38.1.0 |
| 2026-04-01T16:16:08.623763+00:00 | GitLab Importer | Affected by | VCID-zawz-vky5-tkgt | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/bugsnag/bugsnag-laravel/CVE-2016-5385.yml | 38.0.0 |