Vulnerability Description
A Host header injection vulnerability exists in CTFd 3.7.5, due to the application failing to properly validate or sanitize the Host header. An attacker can manipulate the Host header in HTTP requests, which may lead to phishing attacks, reset password, or cache poisoning. NOTE: the Supplier's position is that the end user is supposed to edit the NGINX configuration template to set server_name (with this setting, Host header injection cannot occur).
CVSS Score
MEDIUM
Related Weaknesses (CWE)
References
- https://blog.ctfd.io/ctfd-3-7-6/
- https://codetoanbug.com/poc-cve-2025-23001-ctfd-english/
- https://github.com/CTFd/CTFd
FAQ
What is CVE-2025-23001?
CVE-2025-23001 is a vulnerability with a CVSS score of 6.1 (MEDIUM). A Host header injection vulnerability exists in CTFd 3.7.5, due to the application failing to properly validate or sanitize the Host header. An attacker can manipulate the Host header in HTTP requests...
How severe is CVE-2025-23001?
CVE-2025-23001 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-23001?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.