CVE-2025-65034

HIGH

rallly < 4.5.4 - Authenticated Authorization Bypass via PollId Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-65034. PoCs published by alaeddine03.

AI-analyzed exploit summary This repository provides a detailed description of CVE-2025-65034, an Insecure Direct Object Reference (IDOR) vulnerability in Rallly. The issue allows authenticated users to reopen finalized polls by manipulating the pollId parameter, affecting data integrity and availability.

Description

Rallly is an open-source scheduling and collaboration tool. Prior to version 4.5.4, an improper authorization vulnerability allows any authenticated user to reopen finalized polls belonging to other users by manipulating the pollId parameter. This can disrupt events managed by other users and compromise both availability and integrity of poll data. This issue has been patched in version 4.5.4.

Exploits (1)

github WRITEUP
by alaeddine03 · poc
https://github.com/alaeddine03/CVE-Disclosures/tree/main/Rallly/CVE-2025-65034

This repository provides a detailed description of CVE-2025-65034, an Insecure Direct Object Reference (IDOR) vulnerability in Rallly. The issue allows authenticated users to reopen finalized polls by manipulating the pollId parameter, affecting data integrity and availability.

Classification
Writeup 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Rallly < 4.5.4
Auth required
Prerequisites: Authenticated user access
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (2)

Core 2
Core References

Scores

CVSS v3 8.1
EPSS 0.0029
EPSS Percentile 20.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-639
Status published
Products (1)
rallly/rallly < 4.5.4
Published Nov 19, 2025
Tracked Since Feb 18, 2026