Beehive Forum Host Header Injection Vulnerability in Password Reset Functionality

A host header injection vulnerability has been identified in Beehive Forum version 1.5.2, specifically within the password reset feature. This vulnerability allows attackers to manipulate password reset requests by injecting a malicious host header. As a result, they can intercept password reset tokens and change the passwords of victims' accounts without requiring direct authentication.

Impact

Exploitation of this vulnerability leads to unauthorized account access through password reset manipulation, allowing attackers to change passwords and take over accounts.

Reproduction

To reproduce this vulnerability, send a password reset request while injecting a malicious host header. This can be done using a tool like Burp Suite or by modifying the request headers in a script. Once the request is intercepted, extract the password reset token from the response. Then, use the token to change the password of the targeted account.