Tahar BENNACEF (aka tar.gz)

1 exploit Active since Dec 2025
CVE-2023-53958 EXPLOITDB HIGH text WRITEUP
LDAP Tool Box Self Service Password 1.5.2 - SSRF
LDAP Tool Box Self Service Password 1.5.2 contains a password reset vulnerability that allows attackers to manipulate HTTP Host headers during token generation. Attackers can craft malicious password reset requests that generate tokens sent to a controlled server, enabling potential account takeover by intercepting and using stolen reset tokens.
CVSS 7.5