CVE-2022-36032 ReactPHP HTTP is a streaming HTTP client and server implementation for ReactPHP
ReactPHP HTTP can be used with any 3rd party authentication system. It provides support for AWS, Azure, GitHub, Salesforce, Google, Facebook, etc. It can be used to protect any application that needs authentication. For example, to protect a blog platform, to protect content management systems, to enable single sign-on, to enable passwordless login, to enable password management, to enable registration/authentication systems, etc. ReactPHP HTTP supports custom headers, cookies, and request data. ReactPHP HTTP supports custom headers. You can send custom headers with your request data. This is useful when you want to send user-specific data with every request, for example, to enable single sign-on. You can configure custom request headers in the server settings. This can be done in the settings of a single server instance or in server group settings. You can also configure custom headers in the group settings. This can be done for a server group or for an entire application. You can send custom request data with every request. This is useful when you want to send data that is not directly related to the request/response cycle. For example, you can send user-specific data, or data related to the application being protected. You can configure custom request data in the server settings. This can be done in the settings of a single server instance or in server group settings. You can also configure custom request data in the group settings. This can be done for a server
Authentication Security
ReactPHP HTTP provides a wide array of authentication security options. You can use the server settings to set up custom headers and request data. You can also use the group settings to set up custom headers and request data. It allows you to write your own authentication methods, implement your own authentication strategies, or use any 3rd party system that supports HTTP.
Timeline
Published on: 09/06/2022 19:15:00 UTC
Last modified on: 09/10/2022 03:18:00 UTC
References
- https://github.com/reactphp/http/pull/175
- https://github.com/reactphp/http/security/advisories/GHSA-w3w9-vrf5-8mx8
- https://github.com/reactphp/http/releases/tag/v1.7.0
- https://github.com/reactphp/http/commit/663c9a3b77b71463fa7fcb76a6676ffd16979dd6
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-36032