CNNVD-202510-3528 Information

CNNVD ID

CNNVD-202510-3528

Related CVE

CVE-2025-12297

• CNNVD Published: 2025-10-27

Description (Chinese)

pybbs是iuiu个人开发者的一个Java开发的社区平台。 pybbs 6.0.0及之前版本存在访问控制错误漏洞，该漏洞源于文件UserApiController.java中未知函数的错误操作，可能导致信息泄露。

Description (English)

Pybbs is a community platform developed by Java, an iuiu personal developer. There is a bug in access control in pybbs 6.0.0 and earlier versions, which stems from the error of an unknown function in file UserApiController.java, which could lead to the leaking of information.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

个人开发者

Published

2025-10-27

Last Modified

2026-02-24

References

https://vuldb.com/?submit.675906 https://www.yuque.com/yuqueyonghutxhnup/pbbo84/ruh1cg5isrmugkh3?singleDoc https://vuldb.com/?ctiid.329965 https://vuldb.com/?id.329965 https://access.redhat.com/security/cve/cve-2025-12297