CRITICAL🇵🇱 Wersja polska

CVE-2025-63314

CVSS 10.0v3.1pub. 2026-01-12upd. 2026-07-05

A static password reset token in the password reset function of DDSN Interactive Acora CMS v10.7.1 allows attackers to arbitrarily reset the user password and execute a full account takeover via a replay attack.

🤖 AI Analysis
How it works

The system generates a static password reset token that is not unique or single-use — it remains valid after first use. An attacker who intercepts such a token (e.g., from browser history, server logs, email messages, or another communication channel) can perform a replay attack by resending the password reset request with the same token. No authentication or victim interaction is required, and the vulnerability is remotely accessible over the network without additional prerequisites (CVSS AV:N/AC:L/PR:N/UI:N).

Impact

An attacker can arbitrarily reset the password of any user in the CMS system and take full control of their account, which may lead to unauthorized access to managed content, user data, and further compromise of the system.

Mitigation & patch

Apply patches available from the vendor according to the references (http://acora.com, http://ddsn.com). Until an update is applied, it is recommended to enforce single-use tokens and time limitations for password reset tokens, and to monitor logs for repeated use of the same tokens.

Who is affected

DDSN Interactive Acora CMS version 10.7.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
  • Ddsn Cm3 Acora Cms

    APP
    Ddsn
    10.7.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-25967HIGH8.8ten sam vendor

Acora CMS version 10.1.1 is vulnerable to Cross-Site Request Forgery (CSRF). This flaw enables attackers to tr...

CVE-2025-22964HIGH8.1ten sam vendor

DDSN Interactive cm3 Acora CMS version 10.1.1 has an unauthenticated time-based blind SQL Injection vulnerabil...

CVE-2006-0221HIGH7.5ten sam vendor

SQL injection vulnerability in index.asp in the Admin Panel in Dragon Design Services Network (DDSN) cm3 conte...

CVE-2025-25968MEDIUM6.0ten sam vendor

DDSN Interactive cm3 Acora CMS version 10.1.1 contains an improper access control vulnerability. An editor-pri...

CVE-2013-4727MEDIUM5.0ten sam vendor

DDSN Interactive cm3 Acora CMS 6.0.6/1a, 6.0.2/1a, 5.5.7/12b, 5.5.0/1b-p1, and possibly other versions, allows...