Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-38796

Disclosure Date: September 14, 2022 (last updated February 24, 2025)
A Host Header Injection vulnerability in Feehi CMS 2.1.1 may allow an attacker to spoof a particular header. This can be exploited by abusing password reset emails.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0