Description
Shynet before 0.14.0 allows Host header injection in the password reset flow.
Published: 2026-04-03
Score: 6.4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Host header injection
Action: Patch Now
AI Analysis

Impact

Shynet versions before 0.14.0 allow a host header injection during the password reset process. The application uses the value of the Host header to construct reset emails, enabling an attacker to supply a malicious host that causes reset links to point to a forged domain, potentially leading to credential theft or phishing.

Affected Systems

The affected product is Shynet from milesmcc. Any installation running a version older than 0.14.0 is vulnerable. The issue was fixed in release 0.14.0.

Risk and Exploitability

The severity is moderate. Exploitation probability is low, estimated below 1%. The flaw is not listed in the CISA KEV catalog. An attacker would need only to send a crafted request to the password reset endpoint from an external network, providing a malicious Host header value.

Generated by OpenCVE AI on April 10, 2026 at 04:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Shynet to version 0.14.0 or later
  • If an upgrade cannot be performed immediately, configure the web server or reverse proxy to restrict the Host header to trusted hostnames only
  • After updating, verify that the application no longer uses the Host header when building reset URLs

Generated by OpenCVE AI on April 10, 2026 at 04:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 10 Apr 2026 10:00:00 +0000

Type Values Removed Values Added
Title Host Header Injection in Shynet Password Reset Flow

Fri, 10 Apr 2026 02:15:00 +0000

Type Values Removed Values Added
First Time appeared Shynet
Shynet shynet
CPEs cpe:2.3:a:shynet:shynet:*:*:*:*:*:*:*:*
Vendors & Products Shynet
Shynet shynet

Fri, 03 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 03 Apr 2026 10:15:00 +0000

Type Values Removed Values Added
Title Host Header Injection in Shynet Password Reset Flow
First Time appeared Milesmcc
Milesmcc shynet
Vendors & Products Milesmcc
Milesmcc shynet

Fri, 03 Apr 2026 01:30:00 +0000

Type Values Removed Values Added
Description Shynet before 0.14.0 allows Host header injection in the password reset flow.
Weaknesses CWE-348
References
Metrics cvssV3_1

{'score': 6.4, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L'}

Subscriptions

Milesmcc Shynet
Shynet Shynet
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-04-03T13:21:46.817Z

Reserved: 2026-04-03T01:00:34.056Z

Link: CVE-2026-35507

cve-icon Vulnrichment

Updated: 2026-04-03T13:21:43.691Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-03T02:16:15.170

Modified: 2026-04-10T02:01:43.630

Link: CVE-2026-35507

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-10T09:45:40Z

Weaknesses