5 Easy Facts About MySQL database health check Described
a number header injection vulnerability exists during the forgot password functionality of ArrowCMS version 1.0.0. By sending a specially crafted host header inside the forgot password request, it is feasible to send out password reset hyperlinks to buyers which, as soon as clicked, bring on an attacker-managed server and so leak the password reset