2 matches found
PT-2025-42471
Name of the Vulnerable Software and Affected Versions Aggie version 2.6.1 Description A Host Header injection flaw exists in the forgot password functionality of the software. This allows an attacker to reset a user's password. The vulnerability is present in the handling of the Host header durin...
CVE-2025-22381
Aggie 2.6.1 is affected by CVE-2025-22381 via a Host Header injection in the forgot password flow. The vulnerability allows a attacker to reset a user’s password, with PoC/exploit guidance published in PacketStorm for CVE-2025-22381. Affected versions include 2.6.1 and earlier; as of February 202...