Laravel Tech Community
Oct 10, 2022 · Information Security
PHP Input Validation Vulnerability (CVE‑2022‑31629) Allows Malicious Cookie Injection
A PHP input‑validation flaw (CVE‑2022‑31629) in several versions lets attackers inject malicious __Host‑ or __Secure‑ prefixed cookies, which the application may accept and act upon, and the issue can be mitigated by upgrading to patched PHP releases.
Cookie InjectionSecurityVulnerability
0 likes · 2 min read