2025-10-16 00:00:00
mitre
PUBLISHED
Aggie 2.6.1 has a Host Header injection vulnerability in the forgot password functionality, allowing an attacker to reset a users password.