4 matches found
CVE-2022-0935
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97...
CVE-2022-0935
creationtimestamp| type| source ---|---|--- 2022-04-07 22:36:39+00:00| seen| https://t.me/cibsecurity/40314...
CVE-2022-0935 Host Header injection in password Reset in livehelperchat/livehelperchat
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97...
CVE-2022-0935
CVE-2022-0935 affects livehelperchat/livehelperchat prior to 3.97 and is caused by Host Header injection in the password reset flow. Multiple sources (NVD, Red Hat, OSV, CNVD, PT-Security, CNVD) describe an attacker abusing header handling to forge or manipulate password reset tokens, potentially...