CVE-2022-38796
CVE-2022-38796 affects Feehi CMS 2.1.1 and is a host header injection vulnerability that can be exploited to spoof headers via password reset emails. The connected PT Security entry (PT-2022-24572) confirms the affected version and suggests a workaround: restrict access to password reset function...