3 matches found
CVE-2023-27237
LavaLite CMS v9.0.0 is reported vulnerable to a host header injection attack. The root cause cited across multiple sources is insufficient sanitization of HTTP host headers, enabling manipulation that could affect request routing or cache behavior. No explicit exploit details or in‑the‑wild activ...
CVE-2023-27237
LavaLite CMS v 9.0.0 was discovered to be vulnerable to a host header injection attack...
CVE-2023-27237
LavaLite CMS v 9.0.0 was discovered to be vulnerable to a host header injection attack...