← back
CVE-2018-6889

CVE-2018-6889

EPSS 6.8%
An issue was discovered in Typesetter 5.1. It suffers from a Host header injection vulnerability, Using this attack, a malicious user can poison the web cache or perform advanced password reset attacks or even trigger arbitrary user re-direction.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/44028/unverifiedexploitdbwww.exploit-db.com/exploits/44028unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://securitywarrior9.blogspot.in/2018/02/host-header-injection-type-setter-cms-51.htmlhttps://www.exploit-db.com/exploits/44028/