{"id":"CVE-2021-25994","details":"In Userfrosting, versions v0.3.1 to v4.6.2 are vulnerable to Host Header Injection. By luring a victim application user to click on a link, an unauthenticated attacker can use the “forgot password” functionality to reset the victim’s password and successfully take over their account.","aliases":["GHSA-cv25-3gmg-c6m8"],"modified":"2026-05-30T17:18:46.900103Z","published":"2022-01-03T07:15:07.243Z","references":[{"type":"FIX","url":"https://github.com/userfrosting/UserFrosting/commit/796dd78757902435d1bd286415feea78098e45ba"},{"type":"EVIDENCE","url":"https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25994"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/userfrosting/userfrosting","events":[{"introduced":"baa77a08a8d23d73b0dbbd9ea7b370b601a5fd9e"},{"fixed":"15d713a1fa2e9a67000b2a9a9413473f5c51da4d"},{"fixed":"796dd78757902435d1bd286415feea78098e45ba"}],"database_specific":{"source":["CPE_RANGE","REFERENCES"],"extracted_events":[{"introduced":"0.3.1"},{"fixed":"4.6.3"}],"cpe":"cpe:2.3:a:userfrosting:userfrosting:*:*:*:*:*:*:*:*"}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-25994.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}