Max CVSS | 5.8 | Min CVSS | 5.8 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-9303 | 5.8 |
Laravel 5.4.x before 5.4.22 does not properly constrain the host portion of a password-reset URL, which makes it easier for remote attackers to conduct phishing attacks by specifying an attacker-controlled host.
|
08-06-2017 - 16:57 | 29-05-2017 - 22:29 |