VulnerableCode Package Details - pkg:composer/bugsnag/bugsnag-laravel@2.0.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-zawz-vky5-tkgt Aliases: CVE-2016-5385 GHSA-m6ch-gg5f-wxx3	Improper Access Control PHP does not attempt to address RFC section namespace conflicts and therefore does not protect applications from the presence of untrusted client data in the `HTTP_PROXY` environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, as demonstrated by (1) an application that makes a getenv('HTTP_PROXY') call or (2) a CGI configuration of PHP, aka an `httpoxy` issue.	2.0.2 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-zawz-vky5-tkgt
Aliases:
CVE-2016-5385
GHSA-m6ch-gg5f-wxx3

Improper Access Control PHP does not attempt to address RFC section namespace conflicts and therefore does not protect applications from the presence of untrusted client data in the `HTTP_PROXY` environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, as demonstrated by (1) an application that makes a getenv('HTTP_PROXY') call or (2) a CGI configuration of PHP, aka an `httpoxy` issue.

2.0.2
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T20:34:19.528782+00:00	GitLab Importer	Affected by	VCID-zawz-vky5-tkgt	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/bugsnag/bugsnag-laravel/CVE-2016-5385.yml	38.4.0
2026-04-11T21:44:47.688995+00:00	GitLab Importer	Affected by	VCID-zawz-vky5-tkgt	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/bugsnag/bugsnag-laravel/CVE-2016-5385.yml	38.3.0
2026-04-02T21:58:51.299596+00:00	GitLab Importer	Affected by	VCID-zawz-vky5-tkgt	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/bugsnag/bugsnag-laravel/CVE-2016-5385.yml	38.1.0
2026-04-01T16:16:08.695189+00:00	GitLab Importer	Affected by	VCID-zawz-vky5-tkgt	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/bugsnag/bugsnag-laravel/CVE-2016-5385.yml	38.0.0
2026-04-01T16:00:16.268118+00:00	GHSA Importer	Affected by	VCID-zawz-vky5-tkgt	https://github.com/advisories/GHSA-m6ch-gg5f-wxx3	38.0.0