CVE-2026-10158 TRENDnet TEW-432BRP formPortFw stack-based overflow

A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. Affected is the function formPortFw of the file /goform/formPortFw. The manipulation of the argument servername results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been released t...

EUVD-2025-20237

Malicious code in bioql PyPI...

CVE-2025-43930

Hashview 0.8.1 allows account takeover via the password reset feature because SERVERNAME is not configured and thus a reset depends on the Host HTTP header...

CVE-2025-43933

fblog through 983bede allows account takeover via the password reset feature because SERVERNAME is not configured and thus a reset depends on the Host HTTP header...

CVE-2025-43932

JobCenter through 7e7b0b2 allows account takeover via the password reset feature because SERVERNAME is not configured and thus a reset depends on the Host HTTP header...

CVE-2025-43933

fblog through 983bede allows account takeover via the password reset feature because SERVERNAME is not configured and thus a reset depends on the Host HTTP header...

CVE-2025-43930

Hashview 0.8.1 allows account takeover via the password reset feature because SERVERNAME is not configured and thus a reset depends on the Host HTTP header...

CVE-2025-43931

CVE-2025-43931 affects Flask-Boilerplate up to code revision a170e7c. The root cause is an unconfigured SERVER_NAME, causing the password reset flow to rely on the Host header and enabling account takeover. The CVSS v3.1 metrics indicate a critical risk (9.8) with network attack vector, low attac...

CVE-2025-43930

Summary. Hashview 0.8.1 is affected by an account takeover risk in the password reset flow caused by an unconfigured SERVER_NAME, making reset behavior depend on the Host HTTP header. This misconfiguration can allow an attacker to exploit the password reset mechanism; exploitation details are not...

CVE-2025-43931

flask-boilerplate through a170e7c allows account takeover via the password reset feature because SERVERNAME is not configured and thus a reset depends on the Host HTTP header...

CVE-2025-43933

Summary (CVE-2025-43933): The issue affects fblog versions up to and including 983bede. A misconfigured SERVER_NAME causes the password reset flow to depend on the Host HTTP header, enabling account takeover via password reset. The root cause is that server name information is not validated, allo...

CVE-2025-43932

JobCenter through 7e7b0b2 allows account takeover via the password reset feature because SERVERNAME is not configured and thus a reset depends on the Host HTTP header...

CVE-2025-43932

Summary: JobCenter before patch 7e7b0b2 is vulnerable to account takeover via the password reset flow because SERVER_NAME is not configured, making the reset rely on the Host HTTP header. This root cause enables an attacker to abuse the reset mechanism, with CVSS v3.1 metrics indicating high impa...

thesystem App 1.0 - server_name SQL Injection

thesystem App 1.0 - servername SQL Injection Exploit Title: thesystem 1.0 - 'servername' SQL Injection Author: Sadik Cetin Discovery Date: 2019-09-26 Vendor Homepage: https://github.com/kostasmitroglou/thesystem Software Link: https://github.com/kostasmitroglou/thesystem Tested Version: 1.0 Teste...

Unauthorized Access

WordPress is vulnerable to unauthorized access. The attack is possible because the library uses the SERVERNAME variable to get the hostname of the server for PHP mail functions, allowing an attacker to modify the hostname of his choice and trigger a password reset function. However, the attack ca...

CVE-2017-8295

WordPress through 4.7.4 relies on the Host HTTP header for a password-reset e-mail message, which makes it easier for remote attackers to reset arbitrary passwords by making a crafted wp-login.php?action=lostpassword request and then arranging for this message to bounce or be resent, leading to...

JanRain PHP OpenID library security bypass vulnerability

JanRain PHP OpenID library is a U.S. JanRain company's OpenID library for PHP5 . The examples/consumer/common.php file in the JanRain PHP OpenID library fails to properly check for the 'openid.realm' parameter sent via the SERVERNAME element, allowing remote attackers to Modifying the Host HTTP...

CVE-2016-2049

examples/consumer/common.php in JanRain PHP OpenID library aka php-openid improperly checks the openid.realm parameter against the SERVERNAME element in the SERVER superglobal array, which might allow remote attackers to hijack the authentication of arbitrary users via vectors involving a crafted...

Possible Host Spoofing through SERVER_NAME

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001/...

MS Windows IIS 5.0 (500-100.asp) Server Name Spoof Exploit

Exploit for unknown platform in category remote exploits ========================================================== MS Windows IIS 5.0 500-100.asp Server Name Spoof Exploit ========================================================== /...