MySQL health check service - An Overview
A host header injection vulnerability exists from the forgot password operation of ArrowCMS version one.0.0. By sending a specially crafted host header during the forgot password request, it is feasible to mail password reset inbound links to people which, as soon as clicked, bring on an attacker-managed server and thus leak the password reset toke