| CVE编号 | CVE-2025-27913 |
|---|---|
| 发布日期 | 2025-03-10T00:00:00.000Z |
| 更新日期 | 2025-03-11T02:52:25.597Z |
| 状态 | PUBLISHED |
| 受影响的供应商 | Passbolt |
| 受影响的产品 | API |
| 描述 | Passbolt API before 5, if the server is misconfigured (with an incorrect installation process and disregarding of Health Check results), can send email messages with a domain name taken from an attacker-controlled HTTP Host header. |
参考链接:
