cve/2024/CVE-2024-25170.md

CVE-2024-25170

Description

An issue in Mezzanine v6.0.0 allows attackers to bypass access controls via manipulating the Host header.

POC

Reference

• https://github.com/shenhav12/CVE-2024-25170-Mezzanine-v6.0.0
• https://github.com/shenhav12/CVE-2024-25170-Mezzanine-v6.0.0

Github

• https://github.com/fkie-cad/nvd-json-data-feeds
• https://github.com/nomi-sec/PoC-in-GitHub
• https://github.com/shenhav12/CVE-2024-25170-Mezzanine-v6.0.0