forest — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in forest, with AI-generated Chinese analysis, references, and POCs.

Vendor: rymcu

CVE ID	Title	CVSS	Severity	Published
CVE-2026-2947	rymcu forest User Profile UserInfoController.java updateUserInfo cross site scripting CWE-79	3.5	Low	2026-02-22
CVE-2026-2946	rymcu forest Article Content/Comments/Portfolio XssUtils.java XssUtils.replaceHtmlCode cross site scripting CWE-79	3.5	Low	2026-02-22
CVE-2025-12925	rymcu forest UserDicController.java deleteDic authorization CWE-862	7.3	High	2025-11-10
CVE-2025-12924	rymcu forest BankController.java GlobalResult authorization CWE-862	4.3	Medium	2025-11-10

All 4 known CVE vulnerabilities affecting forest with full Chinese analysis, references, and POCs where available.