CVE-2025-22381

HIGH

Aggie 2.6.1 - Unauthenticated Password Reset via Host Header Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-22381. PoCs published by pescada-dev.

AI-analyzed exploit summary This is a detailed writeup and proof-of-concept for CVE-2025-22381, a Host Header Injection vulnerability in the Aggie Open-Source Project. The vulnerability allows an attacker to manipulate the Host header in password reset requests, leading to phishing attacks and potential account takeover.

Description

Aggie 2.6.1 has a Host Header injection vulnerability in the forgot password functionality, allowing an attacker to reset a user's password.

Exploits (1)

nomisec WRITEUP 1 stars
by pescada-dev · poc
https://github.com/pescada-dev/CVE-2025-22381

This is a detailed writeup and proof-of-concept for CVE-2025-22381, a Host Header Injection vulnerability in the Aggie Open-Source Project. The vulnerability allows an attacker to manipulate the Host header in password reset requests, leading to phishing attacks and potential account takeover.

Classification
Writeup 100%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: TID-Lab/aggie (all versions including 2.6.1 and earlier)
No auth needed
Prerequisites: Access to the target application's password reset endpoint · Ability to manipulate HTTP headers
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 8.2
EPSS 0.0062
EPSS Percentile 44.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-620
Status published
Published Oct 16, 2025
Tracked Since Feb 18, 2026