ГлавнаяУязвимости → CVE-2025-62527
7.1высокая

CVE-2025-62527

Описание

Taguette is an open source qualitative research tool. An issue has been discovered in Taguette versions prior to 1.5.0. It was possible for an attacker to request password reset email containing a malicious link, allowing the attacker to set the email if clicked by the victim. This issue has been patched in version 1.5.0.

Затрагиваемое ПО
Taguette Taguette
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N
Источники
https://github.com/remram44/taguette/security/advisories/GHSA-7rc8-5c8q-jr6jhttps://gitlab.com/remram44/taguette/-/issues/331