CNNVD-202508-3141 Information

CNNVD ID

CNNVD-202508-3141

Related CVE

CVE-2025-9461

• CNNVD Published: 2025-08-26

Description (Chinese)

diyhi bbs（巡云轻论坛系统）是diyhi个人开发者的一个论坛系统。 diyhi bbs 6.8及之前版本存在安全漏洞，该漏洞源于对文件src/main/java/cms/web/action/filePackage/FilePackageManageAction.java中参数idGroup的错误操作导致信息泄露。

Description (English)

Diyhibbs (the cloud light forum system) is a forum system for diyhi personal developers. There was a security loophole in diyhi bs 6.8 and earlier versions, which resulted from an error in the idGroup for document src/main/java/cms/web/action/filePackage/filePackageManageaction.java.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-26

Last Modified

2026-02-24

References

https://github.com/August829/Yu/blob/main/58ead8e7e08bfb0e1.md https://vuldb.com/?submit.634295 https://vuldb.com/?id.321296 https://vuldb.com/?ctiid.321296 https://nvd.nist.gov/vuln/detail/CVE-2025-9461