Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Dotclear Permissions Privileges and Access Controls Vulnerability - CVE-2016-7903 - Vulnerability Database
Dotclear

Dotclear Permissions Privileges and Access Controls Vulnerability - CVE-2016-7903

Low
Reference: CVE-2016-7903
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-7903
Title: Dotclear Permissions Privileges and Access Controls Vulnerability
Overview:

Dotclear before 2.10.3 when the Host header is not part of the web server routing process allows remote attackers to modify the password reset address link via the HTTP Host header.