CVE-2021-30185

Summary

CERN Indico before 2.3.4 can use an attacker-supplied Host header in a password reset link.

Affected Software

VendorProductVersion RangeStatus
n/an/an/aaffected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

References