CVE-2024-45522

Published: 2024-09-02T00:15Z

Last Modified: 2024-09-05T14:29Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Linen before cd37c3e does not verify that the domain is linen.dev or www.linen.dev when resetting a password. This occurs in create in apps/web/pages/api/forgot-password/index.ts. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt