Описание
Feehi CMS host header injection vulnerability
A Host Header Injection vulnerability in Feehi CMS 2.1.1 may allow an attacker to spoof a particular header. This can be exploited by abusing password reset emails.
Пакеты
Наименование
feehi/cms
composer
Затронутые версииВерсия исправления
<= 2.1.1
Отсутствует
Связанные уязвимости
CVSS3: 6.1
nvd
больше 3 лет назад
A Host Header Injection vulnerability in Feehi CMS 2.1.1 may allow an attacker to spoof a particular header. This can be exploited by abusing password reset emails.