Описание
The affected versions of PowerCMS allow HTTP header injection. This vulnerability can be leveraged to direct the affected product to send email with a tampered URL, such as password reset mail.
EPSS
Процентиль: 40%
0.00187
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-74
Связанные уязвимости
CVSS3: 5.3
github
11 месяцев назад
The affected versions of PowerCMS allow HTTP header injection. This vulnerability can be leveraged to direct the affected product to send email with a tampered URL, such as password reset mail.
EPSS
Процентиль: 40%
0.00187
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-74