CVE-2022-23079

In motor-admin versions 0.0.1 through 0.2.56 are vulnerable to host header injection in the password reset functionality where malicious actor can send fake password reset email to arbitrary victim.
Configurations

Configuration 1

cpe:2.3:a:getmotoradmin:motor_admin:*:*:*:*:*:*:*:*

Information

Published : 2022-06-22 01:15

Updated : 2022-06-29 03:50


NVD link : CVE-2022-23079

Mitre link : CVE-2022-23079

Products Affected
No products.
CWE
CWE-116

Improper Encoding or Escaping of Output