MEDIUM🇵🇱 Wersja polska

CVE-2025-8547

CVSS 5.5v4.0pub. 2025-08-05upd. 2025-09-03

A vulnerability has been found in atjiu pybbs up to 6.0.0 and classified as critical. This vulnerability affects unknown code of the component Email Verification Handler. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 044f22893bee254dc2bb0d30f614913fab3c22c2. It is recommended to apply a patch to fix this issue.

CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Pybbs Project Pybbs

    APP
    Pybbs Project
    ≤ 6.0.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2020-28702HIGH7.5ten sam produkt

A SQL injection vulnerability in TopicMapper.xml of PybbsCMS v5.2.1 allows attackers to access sensitive datab...

CVE-2025-8546MEDIUM5.5ten sam produkt

A vulnerability, which was classified as problematic, was found in atjiu pybbs up to 6.0.0. This affects the f...

CVE-2022-23391MEDIUM6.1ten sam produkt

A cross-site scripting (XSS) vulnerability in Pybbs v6.0 allows attackers to execute arbitrary web scripts or ...

CVE-2025-12297LOW2.1ten sam produkt

W oprogramowaniu atjiu pybbs do wersji 6.0.0 wykryto lukę bezpieczeństwa dotyczącą nieznanej funkcji w pliku U...

CVE-2025-8812LOW1.9ten sam produkt

A vulnerability, which was classified as problematic, was found in atjiu pybbs up to 6.0.0. This affects an un...