NEProfile – Host Header Injection

Click the icon to Follow me:- twitterTelegramRedditDiscord

Posted by ghost on Aug 25

Exploit Title: NEProfile – Host Header Injection
Date: 5/13/2020
Vendor Homepage:
Software Link:
Version: 3.3.11
Tested on: 3.3.11
Exploit Author: Josh Sheppard & Bryan Clements
Exploit Contact: ghost () a t undervurse dot_com & mavr1ck2020 a t protonmail dot_com
Exploit Technique: Remote
CVE ID: CVE-2020-12855

1. Description

A host header injection vulnerability has been…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.


Original Source