Lucene search
+L

107 matches found

osv
osv
added 2026/01/13 11:15 p.m.7 views

CVE-2022-50910

Beehive Forum 1.5.2 contains a host header injection vulnerability in the forgot password functionality that allows attackers to manipulate password reset requests. Attackers can inject a malicious host header to intercept password reset tokens and change victim account passwords without direct...

9.8CVSS5.8AI score0.0065EPSS
Exploits1References5
nvd
nvd
added 2026/01/13 11:15 p.m.9 views

CVE-2022-50910

Beehive Forum 1.5.2 contains a host header injection vulnerability in the forgot password functionality that allows attackers to manipulate password reset requests. Attackers can inject a malicious host header to intercept password reset tokens and change victim account passwords without direct...

9.8CVSS0.0065EPSS
Exploits1References5
cve
cve
added 2026/01/13 10:51 p.m.14 views

CVE-2022-50910

Beehive Forum 1.5.2 has a host header injection flaw in the Forgot Password flow. The vulnerability lets an attacker inject a malicious Host header to intercept password reset tokens and change the victim’s password without direct authentication. Root cause: improper host header handling in the p...

9.8CVSS7AI score0.0065EPSS
Exploits1References5Affected Software1
vulnrichment
vulnrichment
added 2026/01/13 10:51 p.m.6 views

CVE-2022-50910 Beehive Forum - Account Takeover

Beehive Forum 1.5.2 contains a host header injection vulnerability in the forgot password functionality that allows attackers to manipulate password reset requests. Attackers can inject a malicious host header to intercept password reset tokens and change victim account passwords without direct...

9.8CVSS7AI score0.0065EPSS
Exploits1References5
cvelist
cvelist
added 2026/01/13 10:51 p.m.26 views

CVE-2022-50910 Beehive Forum - Account Takeover

Beehive Forum 1.5.2 contains a host header injection vulnerability in the forgot password functionality that allows attackers to manipulate password reset requests. Attackers can inject a malicious host header to intercept password reset tokens and change victim account passwords without direct...

9.8CVSS0.0065EPSS
Exploits1References5
cnnvd
cnnvd
added 2026/01/13 12:0 a.m.8 views

Beehive Forum 授权问题漏洞

Beehive Forum is an open source forum system from Beehive. An authorization issue vulnerability exists in Beehive Forum version 1.5.2, which stems from a host header injection in the Forgot Password feature that could allow an attacker to intercept a password reset token and change the account...

9.8CVSS5.8AI score0.0065EPSS
Exploits1References5
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-2423

Malware in sbrugna...

4.3CVSS6.4AI score0.01164EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2007-5984

Malware in sbrugna...

7.5CVSS6.1AI score0.01299EPSS
Exploits1References8
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-0923

Malware in sbrugna...

4.3CVSS6.4AI score0.01614EPSS
Exploits1References6
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-2422

Malware in sbrugna...

7.5CVSS6.4AI score0.01211EPSS
Exploits0References5
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-3204

Malware in sbrugna...

4.3CVSS6.4AI score0.01769EPSS
Exploits0References7
euvd
euvd
added 2025/10/07 12:30 a.m.2 views

EUVD-2008-1090

Malware in sbrugna...

7.5CVSS6.4AI score0.01402EPSS
Exploits0References6
euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-4456

Malware in sbrugna...

7.5CVSS6.4AI score0.01266EPSS
Exploits0References7
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-6209

Malware in sbrugna...

7.5CVSS6.4AI score0.00994EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-4455

Malware in sbrugna...

5.1CVSS6.4AI score0.02093EPSS
Exploits0References7
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-2305

Malware in sbrugna...

4.3CVSS6.4AI score0.01696EPSS
Exploits1References3
redhatcve
redhatcve
added 2025/05/22 8:13 a.m.16 views

CVE-2015-2198

Multiple cross-site scripting XSS vulnerabilities in editprefs.php in Beehive Forum 1.4.4 allow remote attackers to inject arbitrary web script or HTML via the 1 homepageurl, 2 picurl, or 3 avatarurl parameter, which are not properly handled in an error message...

4.3CVSS6AI score0.01696EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/21 6:54 p.m.10 views

CVE-2007-6241

Multiple unspecified vulnerabilities in Beehive Forum 0.7.1 have unknown "critical" impact and attack vectors, different issues than CVE-2007-6014...

7.5CVSS7.2AI score0.01299EPSS
Exploits1References1
zdt
zdt
added 2022/05/12 12:0 a.m.208 views

Beehive Forum - Account Takeover Vulnerability

Exploit Title: Beehive Forum - Account Takeover Exploit Author: Pablo Santiago Vendor Homepage: https://www.beehiveforum.co.uk/ Software Link: https://sourceforge.net/projects/beehiveforum/ Version: 1.5.2 Tested on: Kali Linux and Ubuntu 20.0.4 CVE N/A PoC: https://imgur.com/a/hVlgpCg...

0.2AI score
Exploits0
exploitdb
exploitdb
added 2022/05/11 12:0 a.m.218 views

Beehive Forum - Account Takeover

Exploit Title: Beehive Forum - Account Takeover Date:08/05/2022. Exploit Author: Pablo Santiago Vendor Homepage: https://www.beehiveforum.co.uk/ Software Link: https://sourceforge.net/projects/beehiveforum/ Version: 1.5.2 Tested on: Kali Linux and Ubuntu 20.0.4 CVE N/A PoC:...

7.4AI score
Exploits0
Rows per page
Query Builder