CVE-2022-33011

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in packagist/idno/known

Identifiers

GHSA-p757-4v3p-j74f, CVE-2022-33011

Package Slug

packagist/idno/known

Vulnerability

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Description

Known v1.3.1+2020120201 was discovered to allow attackers to perform an account takeover via a host header injection attack.

Affected Versions

All versions up to 1.3.1

Solution

Unfortunately, there is no solution available yet.

Last Modified

2022-07-26

source