CVE-2025-25452 Information

Description

An issue in TAAGSOLUTIONS GmbH MyTaag v.2024-11-24 and before allows a remote attacker to escalate privileges via the /user\ endpoint

Reference

https://piuswalter.de/blog/2fa-bypass-and-deactivation-attack-in-mytaag/