4 matches found
CVE-2025-6216
CVE-2025-6216 describes an authentication bypass in Allegra due to a flaw in the password recovery flow: the reset token is generated from a predictable value, enabling remote attackers to bypass login. Affected component is the Allegra password recovery/token generation logic (calculateTokenExpD...
CVE-2025-6216 Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability
Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw exists within the password...
CVE-2025-6216 Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability
Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw exists within the password...
CVE-2025-6216
creationtimestamp| type| source ---|---|--- 2025-06-19 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-410/ 2025-06-21 00:45:19+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19096 2025-06-21 01:06:35+00:00| published-proof-of-concept|...