Alltena

Allegra

21 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-6216

  • EPSS 16.63%
  • Veröffentlicht 21.06.2025 00:08:15
  • Zuletzt bearbeitet 18.08.2025 15:58:41

Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerabilit...

8.8

CVE-2025-3485

  • EPSS 0.99%
  • Veröffentlicht 06.06.2025 18:50:54
  • Zuletzt bearbeitet 18.08.2025 16:00:24

Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. ...

8.8

CVE-2025-3486

  • EPSS 0.68%
  • Veröffentlicht 22.05.2025 00:55:02
  • Zuletzt bearbeitet 15.08.2025 16:47:30

Allegra isZipEntryValide Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. Th...

7.2

CVE-2024-5581

  • EPSS 6.39%
  • Veröffentlicht 22.11.2024 20:15:09
  • Zuletzt bearbeitet 07.08.2025 18:01:25

Allegra unzipFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The speci...

7.2

CVE-2024-5580

  • EPSS 10.98%
  • Veröffentlicht 22.11.2024 20:15:09
  • Zuletzt bearbeitet 07.08.2025 18:02:29

Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulner...

7.2

CVE-2024-5579

  • EPSS 10.98%
  • Veröffentlicht 22.11.2024 20:15:09
  • Zuletzt bearbeitet 07.08.2025 18:03:37

Allegra renderFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vuln...

6.3

CVE-2024-30372

  • EPSS 7.22%
  • Veröffentlicht 22.11.2024 20:15:08
  • Zuletzt bearbeitet 03.01.2025 19:55:22

Allegra getLinkText Server-Side Template Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerabilit...

6.5

CVE-2023-51648

  • EPSS 0.49%
  • Veröffentlicht 22.11.2024 20:15:07
  • Zuletzt bearbeitet 03.01.2025 19:28:29

Allegra getFileContentAsString Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Although authentication is required to exploit...

6.5

CVE-2023-52334

  • EPSS 0.49%
  • Veröffentlicht 22.11.2024 20:15:07
  • Zuletzt bearbeitet 03.01.2025 19:54:44

Allegra downloadAttachmentGlobal Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Although authentication is required to explo...

7.3

CVE-2023-52333

  • EPSS 1.53%
  • Veröffentlicht 22.11.2024 20:15:07
  • Zuletzt bearbeitet 03.01.2025 19:49:29

Allegra saveFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, pr...