Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/10/17 7:46 p.m.5 views

CVE-2025-62428

Drawing-Captcha APP provides interactive, engaging verification for Web-Based Applications. The vulnerability is a Host Header Injection in the /register and /confirm-email endpoints. It allows an attacker to manipulate the Host header in HTTP requests to generate malicious email confirmation...

9.3CVSS7AI score0.00423EPSS
Exploits0References1
NVD
NVD
added 2025/10/16 7:15 p.m.5 views

CVE-2025-62428

Drawing-Captcha APP provides interactive, engaging verification for Web-Based Applications. The vulnerability is a Host Header Injection in the /register and /confirm-email endpoints. It allows an attacker to manipulate the Host header in HTTP requests to generate malicious email confirmation...

9.3CVSS0.00423EPSS
Exploits0References2
CVE
CVE
added 2025/10/16 6:57 p.m.7 views

CVE-2025-62428

CVE-2025-62428 affects Drawing-Captcha APP. A Host Header Injection vulnerability exists in /register and /confirm-email endpoints, allowing an attacker to manipulate the Host header and generate malicious email confirmation links that redirect users to attacker-controlled domains. Impact concern...

9.3CVSS6.6AI score0.00423EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/16 6:57 p.m.2 views

CVE-2025-62428 Drawing-Captcha APP Host Header Injection in `/register` and `/confirm-email` Endpoints

Drawing-Captcha APP provides interactive, engaging verification for Web-Based Applications. The vulnerability is a Host Header Injection in the /register and /confirm-email endpoints. It allows an attacker to manipulate the Host header in HTTP requests to generate malicious email confirmation...

9.3CVSS6.6AI score0.00423EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/16 6:57 p.m.13 views

CVE-2025-62428 Drawing-Captcha APP Host Header Injection in `/register` and `/confirm-email` Endpoints

Drawing-Captcha APP provides interactive, engaging verification for Web-Based Applications. The vulnerability is a Host Header Injection in the /register and /confirm-email endpoints. It allows an attacker to manipulate the Host header in HTTP requests to generate malicious email confirmation...

9.3CVSS0.00423EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/16 6:57 p.m.4 views

EUVD-2025-34829

Drawing-Captcha APP provides interactive, engaging verification for Web-Based Applications. The vulnerability is a Host Header Injection in the /register and /confirm-email endpoints. It allows an attacker to manipulate the Host header in HTTP requests to generate malicious email confirmation...

9.3CVSS6.5AI score0.00423EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.4 views

Drawing-Captcha APP 输入验证错误漏洞

Drawing-Captcha APP is a captcha application from Drawing Captcha open source. An input validation error vulnerability exists in Drawing-Captcha APP that stems from the presence of host header injection in the /register and /confirm-email endpoints, which could result in users being redirected to...

9.3CVSS7AI score0.00423EPSS
Exploits0References3
Rows per page
Query Builder