CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Beehiveforum: >> Beehive Forum >> 1.5.2 Security Vulnerabilities

CVE-2022-50910

Beehive Forum 1.5.2 contains a host header injection vulnerability in the forgot password functionality that allows attackers to manipulate password reset requests. Attackers can inject a malicious host header to intercept password reset tokens and change victim account passwords without direct authentication.

CVSS Score

9.8

EPSS Score

0.005

Published

2026-01-13

Page 1

Vulnerabilities

Vulnerable Software

Beehiveforum: >> Beehive Forum >> 1.5.2 Security Vulnerabilities

Products

Pricing

Contact Us