HIGH
php-standard-library
CVE published 2026-06-17
CVE-2026-48979
The PHP Standard Library (PSL) contains a high-severity vulnerability, CVE-2026-48979, affecting versions 6.1.0, 6.1.1, and 6.2.0. This vulnerability allows for request smuggling due to improper validation of DATA frames in the Psl/H2/Server. A malicious client can exploit this by sending more or fewer DATA bytes than declared, potentially bypassing application-level size limits or causing incorrect behav [truncated]