CVE-2023-53958 | ltb-project LDAP Tool Box Self Service Password 1.5.2 HTTP Header Host password recovery (Exploit 51275 / EDB-51275)

Full Article URL: https://vuldb.com/?id.337662
Textarea URL (this page): <a href="https://textarea.nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOz9W3z0zRMzY2NzMzAgCQTAj6_2025-12-19">https://textarea.nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOz9W3z0zRMzY2NzMzAgCQTAj6_2025-12-19
Source: https://vuldb.com/?rss.recent
Vuldb: https://vuldb.com
Publication date: 2025-12-19 23:02:10
Last retrieval: 2025-12-20 05:45:47.528444

23:02 - 19 Dec 2025

vuldb.com

A vulnerability identified as critical has been detected in ltb-project LDAP Tool Box Self Service Password 1.5.2. Impacted is an unknown function of the component HTTP Header Handler. The manipulation of the argument Host leads to weak password recovery. This vulnerability is documented as CVE-2023-53958. The attack can be initiated remotely. Additionally, an exploit exists.

https://vuldb.com/?id.337662

Article info: