Lucene search
GoogleOSV:PYSEC-2021-18HistoryApr 07, 2021 - 2:15 p.m.
PYSEC-2021-18
2021-04-0714:15:00
Google
osv.dev
5
0.001 Low
EPSS
Percentile
31.0%
CERN Indico before 2.3.4 can use an attacker-supplied Host header in a password reset link.
Related
cve
cve
CVE-2021-30185
2021-04-07 14:15:17
osv
osv
CVE-2021-30185
2021-04-07 14:15:17
Indico Tampering with links (e.g. password reset) in sent emails
2021-04-08 16:33:38
nvd
nvd
CVE-2021-30185
2021-04-07 14:15:17
veracode
veracode
Insecure Password Reset Function
2021-04-08 05:32:26
prion
prion
Default credentials
2021-04-07 14:15:00
github
github
Indico Tampering with links (e.g. password reset) in sent emails
2021-04-08 16:33:38
cvelist
cvelist
CVE-2021-30185
2021-04-07 13:25:41