Alltena

Allegra

21 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-6216

  • EPSS 16.63%
  • Published 21.06.2025 00:08:15
  • Last modified 18.08.2025 15:58:41

Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerabilit...

8.8

CVE-2025-3485

  • EPSS 0.99%
  • Published 06.06.2025 18:50:54
  • Last modified 18.08.2025 16:00:24

Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. ...

8.8

CVE-2025-3486

  • EPSS 0.68%
  • Published 22.05.2025 00:55:02
  • Last modified 15.08.2025 16:47:30

Allegra isZipEntryValide Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. Th...

7.2

CVE-2024-5581

  • EPSS 6.39%
  • Published 22.11.2024 20:15:09
  • Last modified 07.08.2025 18:01:25

Allegra unzipFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The speci...

7.2

CVE-2024-5580

  • EPSS 10.98%
  • Published 22.11.2024 20:15:09
  • Last modified 07.08.2025 18:02:29

Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulner...

7.2

CVE-2024-5579

  • EPSS 10.98%
  • Published 22.11.2024 20:15:09
  • Last modified 07.08.2025 18:03:37

Allegra renderFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vuln...

6.3

CVE-2024-30372

  • EPSS 7.22%
  • Published 22.11.2024 20:15:08
  • Last modified 03.01.2025 19:55:22

Allegra getLinkText Server-Side Template Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerabilit...

6.5

CVE-2023-51648

  • EPSS 0.49%
  • Published 22.11.2024 20:15:07
  • Last modified 03.01.2025 19:28:29

Allegra getFileContentAsString Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Although authentication is required to exploit...

6.5

CVE-2023-52334

  • EPSS 0.49%
  • Published 22.11.2024 20:15:07
  • Last modified 03.01.2025 19:54:44

Allegra downloadAttachmentGlobal Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Although authentication is required to explo...

7.3

CVE-2023-52333

  • EPSS 1.53%
  • Published 22.11.2024 20:15:07
  • Last modified 03.01.2025 19:49:29

Allegra saveFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, pr...