Login Sign Up

CVE-2025-12297

4.3 MEDIUM

📋 TL;DR

This vulnerability in atjiu pybbs allows remote attackers to access sensitive information through an unknown function in UserApiController.java. It affects all users running pybbs versions up to 6.0.0. The information disclosure could expose user data or system details to unauthorized parties.

💻 Affected Systems

Products:
  • atjiu pybbs
Versions: up to 6.0.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all installations with the vulnerable UserApiController.java file. No special configuration required for exploitation.

📦 What is this software?

Pybbs by Pybbs Project

View all CVEs affecting Pybbs →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Sensitive user information (credentials, personal data) or system configuration details are exposed to attackers, potentially leading to account compromise or further attacks.

🟠

Likely Case

Limited information disclosure revealing system details, user metadata, or partial data that could aid in reconnaissance for additional attacks.

🟢

If Mitigated

Minimal impact with proper access controls and network segmentation limiting exposure of sensitive data.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploit is publicly available according to the CVE description, suggesting relatively easy exploitation.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 6.0.1 or later

Vendor Advisory: https://www.yuque.com/yuqueyonghutxhnup/pbbo84/ruh1cg5isrmugkh3?singleDoc

Restart Required: No

Instructions:

1. Check current pybbs version. 2. Update to version 6.0.1 or later from official sources. 3. Verify the UserApiController.java file has been updated. 4. Test functionality after update.

🔧 Temporary Workarounds

Restrict API Access

all

Implement network-level restrictions to limit access to the UserApiController endpoints

Disable Vulnerable Endpoint

all

Temporarily disable or block the specific API endpoint in UserApiController.java

🧯 If You Can't Patch

  • Implement strict network segmentation to isolate the pybbs instance
  • Deploy a web application firewall (WAF) with rules to detect and block information disclosure attempts

🔍 How to Verify

Check if Vulnerable:

Check if pybbs version is 6.0.0 or earlier. Examine the UserApiController.java file for the vulnerable function.

Check Version:

Check pybbs configuration files or admin panel for version information

Verify Fix Applied:

Verify pybbs version is 6.0.1 or later. Check that the UserApiController.java file has been updated to the patched version.

📡 Detection & Monitoring

Log Indicators:

  • Unusual API calls to UserApiController endpoints
  • Multiple failed authentication attempts followed by information requests
  • Access patterns indicating enumeration of user data

Network Indicators:

  • Unusual traffic to UserApiController endpoints from unexpected sources
  • Patterns of information gathering requests

SIEM Query:

source="pybbs" AND (uri="*UserApiController*" OR method="GET" AND response_size>threshold)

📊 Metadata

CVE ID: CVE-2025-12297
CVSS v3 Score: 4.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-200
EPSS Score: 0.04% exploit probability (9.8th percentile)
Published: October 27, 2025
Last Updated: November 5, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-12297, you might also want to check these:

CVE-2025-61481 10.0

MikroTik RouterOS and SwOS expose their WebFig management interface over unencrypted HTTP by default...

Same vulnerability type (CWE-200)
CVE-2025-53624 10.0

The Docusaurus gists plugin versions before 4.0.0 expose GitHub Personal Access Tokens in client-sid...

Same vulnerability type (CWE-200)
CVE-2023-49103 10.0

This vulnerability in ownCloud's graphapi app exposes PHP configuration details (phpinfo) via a thir...

Same vulnerability type (CWE-200)