Vulnerability Description
A vulnerability has been found in atjiu pybbs up to 6.0.0 and classified as problematic. This vulnerability affects the function changeLanguage of the file src/main/java/co/yiiu/pybbs/controller/front/IndexController.java. The manipulation of the argument referer leads to open redirect. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The patch is identified as edb14ff13e9e05394960ba46c3d31d844ff2deac. It is recommended to apply a patch to fix this issue.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Pybbs Project | Pybbs | <= 6.0.0 |
Related Weaknesses (CWE)
References
- https://github.com/atjiu/pybbs/commit/edb14ff13e9e05394960ba46c3d31d844ff2deacPatch
- https://github.com/atjiu/pybbs/issues/210ExploitIssue Tracking
- https://github.com/atjiu/pybbs/issues/210#issue-3256474679ExploitIssue Tracking
- https://github.com/atjiu/pybbs/issues/210#issuecomment-3134906856Issue Tracking
- https://vuldb.com/?ctiid.319342Permissions RequiredVDB Entry
- https://vuldb.com/?id.319342Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.622333Third Party AdvisoryVDB Entry
- https://github.com/atjiu/pybbs/issues/210ExploitIssue Tracking
- https://github.com/atjiu/pybbs/issues/210#issue-3256474679ExploitIssue Tracking
- https://github.com/atjiu/pybbs/issues/210#issuecomment-3134906856Issue Tracking
FAQ
What is CVE-2025-8813?
CVE-2025-8813 is a vulnerability with a CVSS score of 3.5 (LOW). A vulnerability has been found in atjiu pybbs up to 6.0.0 and classified as problematic. This vulnerability affects the function changeLanguage of the file src/main/java/co/yiiu/pybbs/controller/front...
How severe is CVE-2025-8813?
CVE-2025-8813 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-8813?
Check the references section above for vendor advisories and patch information. Affected products include: Pybbs Project Pybbs.