CVE-2026-29199

N/A

phpBB before 3.3.16 is vulnerable to Host Header Injection that can lead to password rest link poisoning. When force_server_vars is disabled, the servers hostname may be extracted from the HTTP Host header which is used to generate the password reset link URL. An attacker who can manipulate the Host header (e.g. through misconfigured host setup or missing header validation by the webserver) can cause password reset emails to contain a link pointing to an attacker-controlled domain, potentially leading to account takeover.

N/A

忘记口令恢复机制弱

phpBB 授权问题漏洞

phpBB是ariefibis个人开发者的一套Web论坛软件。 phpBB 3.3.16之前版本存在授权问题漏洞，该漏洞源于主机头注入可能导致密码重置链接投毒，当force_server_vars禁用时，服务器主机名可能从HTTP Host头中提取用于生成密码重置链接URL，攻击者可以操纵Host头导致密码重置电子邮件包含指向攻击者控制域的链接，可能导致账户接管。

N/A

N/A