Login Sign Up

CVE-2025-8546

5.3 MEDIUM
Authentication Bypass

📋 TL;DR

This vulnerability allows attackers to guess CAPTCHA codes in the pybbs admin login page, potentially enabling brute-force attacks against administrative accounts. It affects pybbs installations up to version 6.0.0. Attackers can exploit this remotely without authentication.

💻 Affected Systems

Products:
  • atjiu pybbs
Versions: up to 6.0.0
Operating Systems: all
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects the admin login component with verification code handling. Regular user logins may not be affected.

📦 What is this software?

Pybbs by Pybbs Project

View all CVEs affecting Pybbs →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers successfully brute-force admin credentials, gain administrative access to the pybbs platform, and potentially compromise the entire system or underlying infrastructure.

🟠

Likely Case

Attackers gain unauthorized administrative access to the pybbs platform, allowing content manipulation, user data exposure, or installation of malicious components.

🟢

If Mitigated

Attack attempts are logged and detected, with rate limiting preventing successful brute-force attacks even with guessable CAPTCHA.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly disclosed but no proof-of-concept code is confirmed. Attack requires remote access to admin login page.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: commit ecaf8d46944fd03e3c4ea05698f8acf0aaa570cf

Vendor Advisory: https://github.com/atjiu/pybbs/commit/ecaf8d46944fd03e3c4ea05698f8acf0aaa570cf

Restart Required: No

Instructions:

1. Update pybbs to version after 6.0.0 or apply commit ecaf8d46944fd03e3c4ea05698f8acf0aaa570cf. 2. Verify the verification code handler uses proper randomness. 3. Test admin login functionality.

🔧 Temporary Workarounds

Implement rate limiting

all

Add rate limiting to admin login attempts to prevent brute-force attacks even with guessable CAPTCHA

Use stronger CAPTCHA

all

Replace the vulnerable verification code handler with a more secure CAPTCHA implementation

🧯 If You Can't Patch

  • Implement network-level restrictions to limit access to admin login page to trusted IPs only
  • Enable multi-factor authentication for admin accounts if supported

🔍 How to Verify

Check if Vulnerable:

Check if pybbs version is 6.0.0 or earlier and examine the verification code generation in admin login component

Check Version:

Check pybbs configuration files or admin panel for version information

Verify Fix Applied:

Verify that commit ecaf8d46944fd03e3c4ea05698f8acf0aaa570cf is applied or version is newer than 6.0.0

📡 Detection & Monitoring

Log Indicators:

  • Multiple failed admin login attempts from same IP
  • Successful admin login after many failures

Network Indicators:

  • Unusual traffic patterns to admin login endpoint
  • Rapid sequential requests to verification code handler

SIEM Query:

source="pybbs" AND (event="failed_login" AND user="admin") | stats count by src_ip | where count > 10

📊 Metadata

CVE ID: CVE-2025-8546
CVSS v3 Score: 5.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-287
EPSS Score: 0.06% exploit probability (18.7th percentile)
Published: August 5, 2025
Last Updated: September 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-8546, you might also want to check these:

CVE-2024-27767 10.0

CVE-2024-27767 is an authentication bypass vulnerability that allows attackers to gain unauthorized ...

Same vulnerability type (CWE-287)
CVE-2026-24898 10.0

OpenEMR versions before 8.0.0 contain an unauthenticated token disclosure vulnerability in the MedEx...

Same vulnerability type (CWE-287)
CVE-2026-20127 10.0

This critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager al...

Same vulnerability type (CWE-287)