pybbs — Vulnerabilities & Security Advisories 16

All 16 CVE vulnerabilities found in pybbs, with AI-generated Chinese analysis, references, and POCs.

Vendor: atjiu

CVE ID	Title	CVSS	Severity	Published
CVE-2026-4495	atjiu pybbs CommentApiController.java create cross site scripting CWE-79	3.5	Low	2026-03-20
CVE-2026-4494	atjiu pybbs TopicApiController.java create cross site scripting CWE-79	3.5	Low	2026-03-20
CVE-2025-12297	atjiu pybbs UserApiController.java information disclosure CWE-200	4.3	Medium	2025-10-27
CVE-2025-8814	atjiu pybbs CookieUtil.java setCookie cross-site request forgery CWE-352	4.3	Medium	2025-08-10
CVE-2025-8813	atjiu pybbs IndexController.java changeLanguage redirect CWE-601	3.5	Low	2025-08-10
CVE-2025-8812	atjiu pybbs Admin Panel settings cross site scripting CWE-79	2.4	Low	2025-08-10
CVE-2025-8555	atjiu pybbs search cross site scripting CWE-79	3.5	Low	2025-08-05
CVE-2025-8554	atjiu pybbs list cross site scripting CWE-79	2.4	Low	2025-08-05
CVE-2025-8553	atjiu pybbs list cross site scripting CWE-79	2.4	Low	2025-08-05
CVE-2025-8552	atjiu pybbs list cross site scripting CWE-79	2.4	Low	2025-08-05
CVE-2025-8551	atjiu pybbs list cross site scripting CWE-79	3.5	Low	2025-08-05
CVE-2025-8550	atjiu pybbs list cross site scripting CWE-79	2.4	Low	2025-08-05
CVE-2025-8549	atjiu pybbs UserAdminController.java update weak password CWE-521	3.7	Low	2025-08-05
CVE-2025-8548	atjiu pybbs Registered Email SettingsApiController.java sendEmailCode information exposure CWE-209	3.7	Low	2025-08-05
CVE-2025-8547	atjiu pybbs Email Verification improper authorization CWE-285	5.3	Medium	2025-08-05
CVE-2025-8546	atjiu pybbs Verification Code login Captcha CWE-804	5.3	Medium	2025-08-05

All 16 known CVE vulnerabilities affecting pybbs with full Chinese analysis, references, and POCs where available.