CVE-2021-25980

Name of the Vulnerable Software and Affected Versions Talkyard versions v0.04.01 through v0.6.74-WIP-63220cb Talkyard versions v0.2020.22-WIP-b2e97fe0e through v0.2021.02-WIP-879ef3fe1 Talkyard versions tyse-v0.2021.02-879ef3fe1-regular through tyse-v0.2021.28-af66b6905-regular

Description The issue allows an unauthenticated attacker to use the "forgot password" functionality to reset a victim's password and take over their account by luring the victim to click on a link. This is possible due to Host Header Injection.

Recommendations For Talkyard versions v0.04.01 through v0.6.74-WIP-63220cb, consider disabling the "forgot password" functionality until a patch is available. For Talkyard versions v0.2020.22-WIP-b2e97fe0e through v0.2021.02-WIP-879ef3fe1, restrict access to the password reset feature to minimize the risk of exploitation. For Talkyard versions tyse-v0.2021.02-879ef3fe1-regular through tyse-v0.2021.28-af66b6905-regular, avoid using the "forgot password" feature until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.