[MEDIUM] Cookie leakage to wrong origins and non-restricted cookie acceptance

PKSA-rb93-9z4x-jb66 GHSA-gm98-g2wf-7c68

Affected version: >=2,<2.0.6|<1.0.6

Reported by:
FriendsOfPHP/security-advisories, GitHub

[HIGH] HTTP Proxy header vulnerability

PKSA-9qpv-k3sj-n3f7 CVE-2016-5385 GHSA-m6ch-gg5f-wxx3

Affected version: >=2,<2.0.4|>0.7.1,<1.0.4

Reported by:
FriendsOfPHP/security-advisories, GitHub