logo_clicknbuy.png

CVE-2025-8547 – Atjiu Pybbs Email Verification Handler Remote Authorization Bypass Vulnerability

The following table lists the changes that have been made to the
CVE-2025-8547 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution
of a vulnerability, and for identifying the most recent changes that may
impact the vulnerability’s severity, exploitability, or other characteristics.

  • New CVE Received
    by [email protected]

    Aug. 05, 2025

    Action Type Old Value New Value
    Added Description A vulnerability has been found in atjiu pybbs up to 6.0.0 and classified as critical. This vulnerability affects unknown code of the component Email Verification Handler. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 044f22893bee254dc2bb0d30f614913fab3c22c2. It is recommended to apply a patch to fix this issue.
    Added CVSS V4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
    Added CVSS V3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
    Added CVSS V2 (AV:N/AC:L/Au:N/C:N/I:P/A:N)
    Added CWE CWE-285
    Added CWE CWE-266
    Added Reference https://github.com/atjiu/pybbs/commit/044f22893bee254dc2bb0d30f614913fab3c22c2
    Added Reference https://github.com/atjiu/pybbs/issues/200
    Added Reference https://github.com/atjiu/pybbs/issues/200#issue-3256283647
    Added Reference https://github.com/atjiu/pybbs/issues/200#issuecomment-3134710486
    Added Reference https://vuldb.com/?ctiid.318676
    Added Reference https://vuldb.com/?id.318676
    Added Reference https://vuldb.com/?submit.622180
Share the Post:

Related Posts