VYPR
Vendor

Allegra

Products
1
CVEs
22
Across products
22
Status
Private

Products

1

Recent CVEs

22
View all 22 CVEs →
  • CVE-2025-6216CriJun 21, 2025
    risk 0.66cvss 9.8epss 0.29

    Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw exists…

  • CVE-2023-51639CriNov 22, 2024
    risk 0.64cvss 9.8epss 0.02

    Allegra downloadExportedChart Directory Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw…

  • CVE-2023-51638CriNov 22, 2024
    risk 0.64cvss 9.8epss 0.01

    Allegra Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw exists within the…

  • CVE-2025-3485HigJun 6, 2025
    risk 0.57cvss 8.8epss 0.02

    Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists…

  • CVE-2025-3486HigMay 22, 2025
    risk 0.57cvss 8.8epss 0.02

    Allegra isZipEntryValide Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists within…

  • CVE-2023-52332HigNov 22, 2024
    risk 0.49cvss 7.5epss 0.02

    Allegra serveMathJaxLibraries Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific…

  • CVE-2023-52333HigNov 22, 2024
    risk 0.48cvss 7.3epss 0.02

    Allegra saveFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, product implements a…

  • CVE-2023-51644HigNov 22, 2024
    risk 0.48cvss 7.3epss 0.02

    Allegra SiteConfigAction Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw…

  • CVE-2024-5581HigNov 22, 2024
    risk 0.47cvss 7.2epss 0.02

    Allegra unzipFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists within the…

  • CVE-2024-5580HigNov 22, 2024
    risk 0.47cvss 7.2epss 0.02

    Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw…

  • CVE-2024-5579HigNov 22, 2024
    risk 0.47cvss 7.2epss 0.02

    Allegra renderFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw…

  • CVE-2023-52334MedNov 22, 2024
    risk 0.42cvss 6.5epss 0.02

    Allegra downloadAttachmentGlobal Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Although authentication is required to exploit this vulnerability,…

  • CVE-2023-51648MedNov 22, 2024
    risk 0.42cvss 6.5epss 0.02

    Allegra getFileContentAsString Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the…

  • CVE-2024-30372MedNov 22, 2024
    risk 0.41cvss 6.3epss 0.01

    Allegra getLinkText Server-Side Template Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists…

  • CVE-2023-51642MedNov 22, 2024
    risk 0.41cvss 6.3epss 0.01

    Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, product…

  • CVE-2023-51641MedNov 22, 2024
    risk 0.41cvss 6.3epss 0.01

    Allegra renderFieldMatch Deserialization of Unstrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, product…

  • CVE-2025-11466MedOct 29, 2025
    risk 0.33cvss 4.9epss 0.02

    Allegra DatabaseBackupBL Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw…

  • CVE-2023-51647MedNov 22, 2024
    risk 0.31cvss 4.7epss 0.02

    Allegra saveInlineEdit Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing…

  • CVE-2023-51646MedNov 22, 2024
    risk 0.31cvss 4.7epss 0.02

    Allegra uploadSimpleFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing…

  • CVE-2023-51645MedNov 22, 2024
    risk 0.31cvss 4.7epss 0.02

    Allegra unzipFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing authentication…