Rallly Security Vulnerabilities (CVEs)
Track 11 security vulnerabilities affecting Rallly products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This CVE describes an information disclosure vulnerability in Rallly, an open-source scheduling tool. It allows unauthorized access to participant nam...
Nov 29, 2025This CVE describes an authorization flaw in Rallly's poll management feature where any authenticated user can pause or resume any poll by using only t...
Nov 19, 2025An improper authorization vulnerability in Rallly allows any authenticated user to reopen finalized polls belonging to other users by manipulating the...
Nov 19, 2025An insecure direct object reference (IDOR) vulnerability in Rallly allows authenticated users to modify other participants' votes in polls without aut...
Nov 19, 2025This CVE describes an insecure direct object reference (IDOR) vulnerability in Rallly, an open-source scheduling tool. Any authenticated user can dele...
Nov 19, 2025An authorization flaw in Rallly's comment deletion API allows any authenticated user to delete comments belonging to other users, including poll owner...
Nov 19, 2025This vulnerability allows authenticated users of Rallly to impersonate any other user by manipulating the authorName field in comment creation API req...
Nov 19, 2025An Insecure Direct Object Reference (IDOR) vulnerability in Rallly allows authenticated users to change other participants' display names in polls wit...
Nov 19, 2025An Insecure Direct Object Reference (IDOR) vulnerability in Rallly's poll duplication endpoint allows authenticated users to duplicate polls they don'...
Nov 19, 2025An Insecure Direct Object Reference (IDOR) vulnerability in Rallly allows any authenticated user to finalize polls they don't own by manipulating the ...
Nov 19, 2025CVE-2025-47781 allows unauthenticated attackers to brute-force 6-digit authentication tokens in Rallly's email-based login system. With knowledge of a...
May 14, 2025Why Monitor Rallly Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 11+ known vulnerabilities affecting Rallly products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Rallly packages in under 60 seconds. No agents required - completely agentless scanning that works across Rallly deployments.
Free vulnerability database: Access detailed information about every Rallly CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Rallly CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
