exploitDog

GHSA-7p24-rq5q-3rrv

Опубликовано: 16 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.2

Описание

Aggie 2.6.1 has a Host Header injection vulnerability in the forgot password functionality, allowing an attacker to reset a user's password.

Aggie 2.6.1 has a Host Header injection vulnerability in the forgot password functionality, allowing an attacker to reset a user's password.

Ссылки

EPSS

Процентиль: 5%

0.00021

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-620

Связанные уязвимости

CVE-2025-22381

CVSS3: 8.2

nvd

4 месяца назад

Aggie 2.6.1 has a Host Header injection vulnerability in the forgot password functionality, allowing an attacker to reset a user's password.

EPSS

Процентиль: 5%

0.00021

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-620