Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/17 11:29 p.m.16 views

CVE-2025-32782

Ash Authentication provides authentication for the Ash framework. The confirmation flow for account creation currently uses a GET request triggered by clicking a link sent via email. Some email clients and security tools e.g., Outlook, virus scanners, and email previewers may automatically follow...

5.3CVSS7.1AI score0.00287EPSS
Exploits0References1
NVD
NVD
added 2025/04/15 10:15 p.m.17 views

CVE-2025-32782

Ash Authentication provides authentication for the Ash framework. The confirmation flow for account creation currently uses a GET request triggered by clicking a link sent via email. Some email clients and security tools e.g., Outlook, virus scanners, and email previewers may automatically follow...

5.3CVSS0.00287EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/15 10:4 p.m.11 views

CVE-2025-32782 Ash Authentication email link auto-click account confirmation vulnerability

Ash Authentication provides authentication for the Ash framework. The confirmation flow for account creation currently uses a GET request triggered by clicking a link sent via email. Some email clients and security tools e.g., Outlook, virus scanners, and email previewers may automatically follow...

5.3CVSS7.4AI score0.00287EPSS
Exploits0References2
CVE
CVE
added 2025/04/15 10:4 p.m.62 views

CVE-2025-32782

CVE-2025-32782 affects Ash Authentication (Ash framework). The vulnerability stems from the account-creation confirmation flow, which uses a GET request triggered by clicking an email link. Some email clients and security tools may auto-follow the link, unintentionally confirming the new account ...

5.3CVSS5.4AI score0.00287EPSS
Exploits0References2
OSV
OSV
added 2025/04/15 10:4 p.m.7 views

CVE-2025-32782 Ash Authentication email link auto-click account confirmation vulnerability

Ash Authentication provides authentication for the Ash framework. The confirmation flow for account creation currently uses a GET request triggered by clicking a link sent via email. Some email clients and security tools e.g., Outlook, virus scanners, and email previewers may automatically follow...

5.3CVSS6.8AI score0.00287EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/04/15 10:4 p.m.16 views

CVE-2025-32782 Ash Authentication email link auto-click account confirmation vulnerability

Ash Authentication provides authentication for the Ash framework. The confirmation flow for account creation currently uses a GET request triggered by clicking a link sent via email. Some email clients and security tools e.g., Outlook, virus scanners, and email previewers may automatically follow...

5.3CVSS0.00287EPSS
Exploits0References2
Rows per page
Query Builder