CVE-2025-62428
CVE-2025-62428 affects Drawing-Captcha APP. A Host Header Injection vulnerability exists in /register and /confirm-email endpoints, allowing an attacker to manipulate the Host header and generate malicious email confirmation links that redirect users to attacker-controlled domains. Impact concern...