Description
The from method in library/core/class.email.php in Vanilla Forums before 2.3.1 allows remote attackers to spoof the email domain in sent messages and potentially obtain sensitive information via a crafted HTTP Host header, as demonstrated by a password reset request.
Remediation
References
Related Vulnerabilities
MediaWiki Other Vulnerability (CVE-2004-2187)
Ruby Numeric Errors Vulnerability (CVE-2008-2662)
WordPress Plugin Marketo Forms and Tracking Cross-Site Request Forgery (1.0.2)
WordPress Plugin Easy Twitter Feed Cross-Site Scripting (1.1)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5335)