Metrics
Affected Vendors & Products
Wed, 03 Sep 2025 14:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Pybbs Project
Pybbs Project pybbs |
|
CPEs | cpe:2.3:a:pybbs_project:pybbs:*:*:*:*:*:*:*:* | |
Vendors & Products |
Pybbs Project
Pybbs Project pybbs |
Tue, 05 Aug 2025 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Atjiu
Atjiu pybbs |
|
Vendors & Products |
Atjiu
Atjiu pybbs |
Tue, 05 Aug 2025 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 05 Aug 2025 06:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in atjiu pybbs up to 6.0.0 and classified as problematic. This issue affects the function sendEmailCode of the file src/main/java/co/yiiu/pybbs/controller/api/SettingsApiController.java of the component Registered Email Handler. The manipulation of the argument email leads to information exposure through error message. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The identifier of the patch is 234197c4f8fc7ce24bdcff5430cd42492f28936a. It is recommended to apply a patch to fix this issue. | |
Title | atjiu pybbs Registered Email SettingsApiController.java sendEmailCode information exposure | |
Weaknesses | CWE-200 CWE-209 |
|
References |
|
|
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2025-08-05T13:35:50.719Z
Reserved: 2025-08-04T13:04:47.101Z
Link: CVE-2025-8548

Updated: 2025-08-05T13:35:46.533Z

Status : Analyzed
Published: 2025-08-05T07:15:35.627
Modified: 2025-09-03T13:28:37.810
Link: CVE-2025-8548

No data.

Updated: 2025-08-05T20:50:26Z