Description
It was identified that this application supports the legacy headers X-Original-URL and/or X-Rewrite-URL.
Support for these headers lets users override the path in the request URL via the X-Original-URL or X-Rewrite-URL HTTP request header and allows a user to access one URL but have web application return a different one which can bypass restrictions on higher level caches and web servers.
Many web frameworks such as Symfony 2.7.0 to 2.7.48, 2.8.0 to 2.8.43, 3.3.0 to 3.3.17, 3.4.0 to 3.4.13, 4.0.0 to 4.0.13 and 4.1.0 to 4.1.2 , zend-diactoros up to 1.8.4, zend-http up to 2.8.1, zend-feed up to 2.10.3 are affected by this security issue.
Remediation
Upgrade the affected web frameworks to their latest versions.
References
Related Vulnerabilities
WordPress Plugin SendGrid Security Bypass (1.11.8)
WordPress Plugin SiteGround Security Security Bypass (1.2.5)
WordPress Plugin Premmerce Product Filter for WooCommerce Security Bypass (3.1.2)
WordPress Plugin Protected Posts Logout Button Security Bypass (1.4.5)
WordPress Plugin Monarch Social Sharing Security Bypass (1.2.6)