Security Advisory

CVE-2022-50910

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-13 22:51:50

Last updated 2026-03-05 01:29:29

Assigner VulnCheck

State PUBLISHED

Description

Beehive Forum 1.5.2 contains a host header injection vulnerability in the forgot password functionality that allows attackers to manipulate password reset requests. Attackers can inject a malicious host header to intercept password reset tokens and change victim account passwords without direct authentication.

← Browse all CVEs View on cve.org ↗