Количество 3
Количество 3
CVE-2025-63828
Host Header Injection vulnerability in Backdrop CMS 1.32.1 allows attackers to manipulate the Host header in password reset requests, leading to redirects to malicious domains and potential session hijacking via cookie injection.
CVE-2025-63828
Host Header Injection vulnerability in Backdrop CMS 1.32.1 allows atta ...
GHSA-ffpg-gm3h-4p5p
Backdrop CMS Host Header Injection vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-63828 Host Header Injection vulnerability in Backdrop CMS 1.32.1 allows attackers to manipulate the Host header in password reset requests, leading to redirects to malicious domains and potential session hijacking via cookie injection. | CVSS3: 6.1 | 0% Низкий | 3 месяца назад |
| CVE-2025-63828 Host Header Injection vulnerability in Backdrop CMS 1.32.1 allows atta ... | CVSS3: 6.1 | 0% Низкий | 3 месяца назад |
| GHSA-ffpg-gm3h-4p5p Backdrop CMS Host Header Injection vulnerability | 0% Низкий | 3 месяца назад |
Уязвимостей на страницу