CVE-2022-33012

🗓️ 22 Nov 2022 00:00:00Reported by mitreType

Microweber v1.2.15 account takeover via host header injection attac

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
Veracode	Host Header Injection	24 Nov 202210:33	–	veracode
CNVD	Host Header Injection Vulnerability in Microweber	24 Nov 202200:00	–	cnvd
OSV	CVE-2022-33012	22 Nov 202214:15	–	osv
OSV	GHSA-RP7F-FHM8-9HPF Account Takeover Through Password Reset Poisoning	22 Nov 202215:30	–	osv
NVD	CVE-2022-33012	22 Nov 202214:15	–	nvd
RedhatCVE	CVE-2022-33012	22 May 202522:00	–	redhatcve
CVE	CVE-2022-33012	22 Nov 202214:15	–	cve
Github Security Blog	Account Takeover Through Password Reset Poisoning	22 Nov 202215:30	–	github
Prion	Design/Logic Flaw	22 Nov 202214:15	–	prion
Vulnrichment	CVE-2022-33012	22 Nov 202200:00	–	vulnrichment

Source	Link
pethuraj	www.pethuraj.com/blog/how-i-earned-800-for-host-header-injection-vulnerability/
github	www.github.com/microweber/microweber
blog	www.blog.jitendrapatro.me/cve-2022-33012-account-takeover-through-password-reset-poisoning/
github	www.github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Account%20Takeover

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Nov 2022 00:00Current

9.1High risk

Vulners AI Score9.1

EPSS0.00538