microweber/microweber is vulnerable to host header injection. An attacker is able to reset the password and take over an user account via password reset poisoning through a host header injection attack.Read More