The Greatest Guide To MySQL database health check consultant
A host header injection vulnerability exists inside the forgot password performance of ArrowCMS Edition 1.0.0. By sending a specially crafted host header while in the forgot password request, it is feasible to ship password reset links to end users which, the moment clicked, lead to an attacker-managed server and thus leak the password reset token.