4.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
22.7%
eramba through c2.8.1 allows HTTP Host header injection with (for example) resultant wkhtml2pdf PDF printing by authenticated users.
discussions.eramba.org/t/bug-injectable-host-header-security-issue/1719
www.eramba.org/releases