Improper Host Header Sanitization Vulnerability in Odoo Community and Enterprise 11.0

Improper Host Header Sanitization Vulnerability in Odoo Community and Enterprise 11.0

CVE-2018-14887 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:P

Improper Host header sanitization in the dbfilter routing component in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier allows a remote attacker to deny access to the service and to disclose database names via a crafted request.

Learn more about our Web Application Penetration Testing UK.