Vulnerability Description
A Host Header Injection vulnerability in the password reset component in levlaz braindump v0.4.14 allows remote attackers to conduct password reset poisoning and account takeover via manipulation of the Host header when Flask's url_for(_external=True) generates reset links without a fixed SERVER_NAME.
CVSS Score
HIGH
Related Weaknesses (CWE)
References
- https://drive.google.com/file/d/1FmkctLdOTGMdy6GgLaTzfxemdVDeiA7J/view?usp=shari
- https://gist.github.com/BrookeYangRui/94c3bee0c2cbc1ed81a21d4448550c21
- https://github.com/levlaz/braindump/blob/9640dd03f99851dbd34dd6cac98a747a4a591b0
- https://github.com/levlaz/braindump/blob/9640dd03f99851dbd34dd6cac98a747a4a591b0
- https://portswigger.net/web-security/host-header/exploiting/password-reset-poiso
FAQ
What is CVE-2025-61132?
CVE-2025-61132 is a vulnerability with a CVSS score of 7.1 (HIGH). A Host Header Injection vulnerability in the password reset component in levlaz braindump v0.4.14 allows remote attackers to conduct password reset poisoning and account takeover via manipulation of t...
How severe is CVE-2025-61132?
CVE-2025-61132 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-61132?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.