Description

phpBB before 3.3.16 is vulnerable to Host Header Injection that can lead to password rest link poisoning. When force_server_vars is disabled, the servers hostname may be extracted from the HTTP Host header which is used to generate the password reset link URL. An attacker who can manipulate the Host header (e.g. through misconfigured host setup or missing header validation by the webserver) can cause password reset emails to contain a link pointing to an attacker-controlled domain, potentially leading to account takeover.

INFO

Published Date :

2026-05-04T05:42:15.554Z

Last Modified :

2026-05-04T19:43:18.257Z

Source :

hackerone
AFFECTED PRODUCTS

The following products are affected by CVE-2026-29199 vulnerability.

Vendors Products
Phpbb
  • Phpbb
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-29199.

URL Resource
https://hackerone.com/reports/3543246 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact