CRITICAL🇵🇱 Wersja polska

CVE-2026-26273

CVSS 9.8v3.0pub. 2026-02-13upd. 2026-02-18

Known is a social publishing platform. Prior to 1.6.3, a Critical Broken Authentication vulnerability exists in Known 1.6.2 and earlier. The application leaks the password reset token within a hidden HTML input field on the password reset page. This allows any unauthenticated attacker to retrieve the reset token for any user by simply querying the user's email, leading to full Account Takeover (ATO) without requiring access to the victim's email inbox. This vulnerability is fixed in 1.6.3.

🤖 AI Analysis
How it works

The password reset page in the Known application embeds the reset token directly in a hidden HTML form field that is publicly accessible. An attacker, knowing the victim's email address, can send a password reset request and then read the token directly from the page source code without needing to intercept the email message. With the token, the attacker can set a new password and gain full control over the victim's account (Account Takeover, ATO).

Impact

An attacker gains full control over any user account on the platform, including access to published content, personal data, and the ability to act on behalf of the victim. The exploit requires no authentication or interaction from the victim.

Mitigation & patch

Known should be updated immediately to version 1.6.3, in which the vulnerability has been fixed. The patch is available in the vendor's GitHub repository (tag 1.6.3, commit 8439a07). Until the update is applied, it is recommended to restrict access to the password reset page or temporarily disable this functionality.

Who is affected

Known (social platform) in versions 1.6.2 and earlier (product: Withknown Known).

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Withknown Known

    APP
    Withknown
    < 1.6.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2026-28508CRITICAL9.2PL ✓ten sam produkt

SSRF w platformie Idno (Known) — ominięcie CSRF i dostęp do wewnętrznych zasobów

CVE-2026-28507HIGH8.6ten sam produkt

Idno is a social publishing platform. Prior to version 1.6.4, there is a remote code execution vulnerability v...

CVE-2022-33011HIGH8.8ten sam produkt

Known v1.3.1+2020120201 was discovered to allow attackers to perform an account takeover via a host header inj...

CVE-2022-30852MEDIUM4.3ten sam produkt

Known v1.3.1 was discovered to contain an Insecure Direct Object Reference (IDOR).

CVE-2022-31290MEDIUM5.4ten sam produkt

A cross-site scripting (XSS) vulnerability in Known v1.2.2+2020061101 allows authenticated attackers to execut...