QwikSec

Security Database

CVE

CWE

Training

CVE-2017-7725

Published: Apr 13, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

concrete5 8.1.0 places incorrect trust in the HTTP Host header during caching, if the administrator did not define a "canonical" URL on installation of concrete5 using the "Advanced Options" settings. Remote attackers can make a GET request with any domain name in the Host header; this is stored and allows for arbitrary domains to be set for certain links displayed to subsequent visitors, potentially an XSS vector.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

exploit

x_refsource_EXPLOIT-DB

http://hyp3rlinx.altervista.org/advisories/CONCRETE5-v8.1.0-HOST-HEADER-INJECTION.txt

x_refsource_MISC

https://packetstormsecurity.com/files/142145/concrete5-8.1.0-Host-Header-Injection.html

x_refsource_MISC

vdb-entry

x_refsource_BID

https://hackerone.com/reports/148300

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.