Primary

Context

Perfood Couch-Auth Host Header Injection Vulnerability Allowing Server-Side Template Injection

Vulnerability

A host header injection vulnerability has been identified in the Perfood Couch-Auth NPM package, specifically in versions through 0.21.2. This vulnerability allows for server-side template injection (SSTI) by sending a specially crafted host header in the email change confirmation request. Exploiting this vulnerability could enable an attacker to execute limited commands or leak server-side information.

Impact

Exploitation of this vulnerability could lead to server-side template injection, allowing for the execution of limited commands or the leakage of server-side information.

Reproduction

To reproduce this vulnerability, send a request to the email change confirmation endpoint with a crafted host header. The header should be designed to inject malicious content that will be processed by the server-side template engine. This will trigger the server-side template injection vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

0.0

threat

1.6

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

0.0

threat

1.6

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Perfood Couch-Auth Host Header Injection Vulnerability Allowing Server-Side Template Injection

Vulnerability

Impact

Reproduction

Affected Products

perfood/couch-auth

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating