Vanilla Forums Open Source Software Vulnerable to RCE, Host Header Injection Vulnerability Posted on May 12, 2017 by Simon Steed Vanilla Forums open source software suffers from vulnerabilities that could let an attacker gain access to user accounts, carry out web-cache poisoning attacks, and in some instances, execute arbitrary code.