MidnightBSD

Advisories for getmotoradmin

CVE-2022-23079 MEDIUM

In motor-admin versions 0.0.1 through 0.2.56 are vulnerable to host header injection in the password reset functionality where malicious actor can send fake password reset email to arbitrary victim.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-116,

Products Affected

Vendor Product Version
getmotoradmin motor_admin *