Password Reset Vulnerability in LinkJoin by Latkecrszy
CVE-2025-55137

7.4HIGH

Key Information:

Vendor: Latkecrszy
Status: Linkjoin
Vendor: CVE Published:; 7 August 2025

What is CVE-2025-55137?

LinkJoin, developed by Latkecrszy, contains a vulnerability that stems from inadequate type checking during the password reset process. This flaw can potentially allow unauthorized access to user accounts if exploited effectively. Users are encouraged to review their systems to ensure security protocols are in place to mitigate risks associated with this vulnerability.

Affected Version(s)

LinkJoin 0 <= 882f196fb4c20ed518917215f686e61672aecc90

References

https://github.com/Latkecrszy/linkjoin/pull/4

CVSS V3.1

Score:

7.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 7, 2025
Vulnerability Reserved
Aug 7, 2025