CVE-2019-12425
published 2020-04-30CVE-2019-12425: Apache OFBiz 17.12.01 is vulnerable to Host header injection by accepting arbitrary host
high7.5CVSS 3.1
AVNACLPRNUINSUCNIHAN
Apache OFBiz 17.12.01 is vulnerable to Host header injection by accepting arbitrary host
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | apache_ofbiz | — | — |
| apache | ofbiz | — | — |
| apache | ofbiz | — | — |