CVE-2021-43437

Name of the Vulnerable Software and Affected Versions sourcecodetester Engineers Online Portal (affected versions not specified)

Description The issue allows an attacker to manipulate the Host header, causing the web application to behave in unexpected ways. This is particularly relevant when multiple websites are hosted on the same IP address, where the Host header specifies which website should process the HTTP request. The web server uses this header to dispatch the request to the specified website, and it is possible to send requests with arbitrary Host headers to the first virtual host.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.