VulnerableCode Package Details - pkg:composer/amphp/artax@0.4.0

Search for packages

Package details: pkg:composer/amphp/artax@0.4.0

Essentials
History (4)

purl	pkg:composer/amphp/artax@0.4.0

Next non-vulnerable version	1.0.6
Latest non-vulnerable version	2.0.6
Risk	4.0

Vulnerabilities affecting this package (4)

Vulnerability	Summary	Fixed by
VCID-3c1n-du49-6bes Aliases: CVE-2016-5385 GHSA-m6ch-gg5f-wxx3		1.0.4 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.0.4 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-5gzu-cums-1qh1 Aliases: GHSA-gm98-g2wf-7c68	amphp/artax Cookie leakage to wrong origins and non-restricted cookie acceptance In artax version before 1.0.6 and 2 before 2.0.6, cookies of `foo.bar.example.com` were leaked to `foo.bar`. Additionally, any site could set cookies for any other site. Artax fixed this issue by following newer browser implementations now. Cookies can only be set on domains higher or equal to the current domain, but not on any public suffixes.	1.0.6 Affected by 0 other vulnerabilities. 2.0.6 Affected by 0 other vulnerabilities.
VCID-h2ms-tw6s-2uec Aliases: GMS-2017-131	Cookie leakage, non-restricted cookie acceptance Cookies of `foo.bar.example.com` are leaked to foo.bar. Additionally, any site can set cookies for any other site.	2.0.6 Affected by 0 other vulnerabilities.
VCID-sxpe-npu5-9yd6 Aliases: 2017-05-09	Cookie leakage to wrong origins and non-restricted cookie acceptance	1.0.6 Affected by 0 other vulnerabilities. 2.0.6 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-03T19:05:04.777017+00:00	GitLab Importer	Affected by	VCID-5gzu-cums-1qh1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/amphp/artax/GHSA-gm98-g2wf-7c68.yml	37.0.0
2025-07-03T17:18:56.930566+00:00	GitLab Importer	Affected by	VCID-sxpe-npu5-9yd6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/amphp/artax/2017-05-09.yml	37.0.0
2025-07-03T17:18:55.907737+00:00	GitLab Importer	Affected by	VCID-h2ms-tw6s-2uec	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/amphp/artax/GMS-2017-131.yml	37.0.0
2025-07-03T17:15:59.947253+00:00	GitLab Importer	Affected by	VCID-3c1n-du49-6bes	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/amphp/artax/CVE-2016-5385.yml	37.0.0