CVE-2022-50910 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Beehive Forum 1.5.2 contains a host header injection vulnerability in the forgot password functionality that allows attackers to manipulate password reset reque…
High CVSS: 8.5

CVE-2022-50910

Beehive Forum 1.5.2 contains a host header injection vulnerability in the forgot password functionality that allows attackers to manipulate password reset requests. Attackers can inject a malicious host header to intercept password reset tokens and change victim account passwords without direct authentication.
Vendor
Beehiveforum
Product
Beehive Forum
CWE
CWE-640
Yayın Tarihi
2026-01-13 23:15:53
Güncelleme
2026-02-02 16:16:16
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-640 Beehive Forum HIGH Beehiveforum 2026

Referanslar

https://imgur.com/a/hVlgpCg https://sourceforge.net/projects/beehiveforum/ https://www.beehiveforum.co.uk/ https://www.exploit-db.com/exploits/50923 https://www.vulncheck.com/advisories/beehive-forum-account-takeover https://www.exploit-db.com/exploits/50923 https://www.vulncheck.com/advisories/beehive-forum-account-takeover