Security Flaw in Taguette Open Source Research Tool
CVE-2025-62527

7.1HIGH

Key Information:

Vendor: Remram44
Status: Taguette
Vendor: CVE Published:; 20 October 2025

What is CVE-2025-62527?

A security issue was identified in the Taguette open source qualitative research tool that affects versions before 1.5.0. The vulnerability allows attackers to craft malicious password reset emails containing links that, if clicked by the target user, can enable the attacker to take control of the reset process. This poses a significant risk, as it compromises the user's ability to securely manage their account. The issue has been identified and patched in version 1.5.0.

Affected Version(s)

taguette < 1.5.0

References

https://github.com/remram44/taguette/security/advisories/...

x_refsource_CONFIRM

https://gitlab.com/remram44/taguette/-/issues/331

x_refsource_MISC

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 20, 2025
Vulnerability Reserved
Oct 15, 2025

JSON

Remram44

What is CVE-2025-62527?

Affected Version(s)

References

CVSS V3.1

Timeline