AI security incident: Known affected by Account Takeover via Password Reset Token Leakage (GHSA-78wq-6gcv-w...
Summary A Critical Broken Authentication vulnerability exists in Known 1.6.2. The application leaks the password reset token within a hidden HTML input field on the password reset page. This allows any unauthenticated attacker to retrieve the reset token for any user by simply querying the user's email, leading to full Account Takeover (ATO) without requiring access to the victim's email inbox. ### Details The vulnerability occurs within the password reset flow. When a reset is requested, the application generates a verification code. However, the subsequent reset page (/account/password/reset/) incorrectly reflects this code back to the client in the HTML source code.
Impact
Severity HIGH with confidence 80%. Validate exposure quickly to reduce security and compliance risk.
Recommended Response
- Confirm whether affected products, models, or integrations are used in your environment.
- Apply vendor fixes or mitigations and restrict risky permissions until verified.
- Monitor logs for related indicators and document containment for audit evidence.
Sources
Want alerts like this in real time?
Get notified with incident context, likely impact, and response guidance.
Get Notified