Lucene search
K

4 matches found

CVE
CVE
added 2025/06/21 12:8 a.m.39 views

CVE-2025-6216

CVE-2025-6216 describes an authentication bypass in Allegra due to a flaw in the password recovery flow: the reset token is generated from a predictable value, enabling remote attackers to bypass login. Affected component is the Allegra password recovery/token generation logic (calculateTokenExpD...

9.8CVSS9.8AI score0.3072EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/21 12:8 a.m.5 views

CVE-2025-6216 Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability

Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw exists within the password...

9.8CVSS9.8AI score0.3072EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/21 12:8 a.m.79 views

CVE-2025-6216 Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability

Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw exists within the password...

9.8CVSS0.3072EPSS
Exploits0References2
Circl
Circl
added 2025/06/19 3:0 a.m.8 views

CVE-2025-6216

creationtimestamp| type| source ---|---|--- 2025-06-19 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-410/ 2025-06-21 00:45:19+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19096 2025-06-21 01:06:35+00:00| published-proof-of-concept|...

9.8CVSS8.7AI score0.3072EPSS
Exploits0References4
Rows per page
Query Builder