Package Instance

Cross-site Scripting
`Zend/Diactoros/Uri::filterPath` in `zend-diactoros` does not properly sanitize path input, which allows remote attackers to perform cross-site scripting (XSS) or open redirect attacks.

URL Redirection to Untrusted Site (Open Redirect)
URL Rewrite vulnerability.