Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
motoradmin - host header Injection in the reset password functionality
Vulnerability Description
In motor-admin versions 0.0.1 through 0.2.56 are vulnerable to host header injection in the password reset functionality where malicious actor can send fake password reset email to arbitrary victim.
CVSS Information
N/A
Vulnerability Type
对输出编码和转义不恰当
Vulnerability Title
motor-admin 安全漏洞
Vulnerability Description
motor-admin是Motor Admin开源的一种无代码管理面板和商业智能工具。 motor-admin 0.0.1版本至0.2.56版本存在安全漏洞,该漏洞源于密码重置功能中的主机header易受攻击。攻击者利用该漏洞向任意受害者发送虚假密码重置电子邮件。
CVSS Information
N/A
Vulnerability Type
N/A