Login Sign Up

CVE-2025-9461

4.3 MEDIUM

📋 TL;DR

This CVE describes an information disclosure vulnerability in diyhi bbs versions up to 6.8. Attackers can exploit a flaw in the File Compression Handler component to access sensitive information by manipulating the idGroup parameter. Organizations running vulnerable versions of diyhi bbs are affected.

💻 Affected Systems

Products:
  • diyhi bbs
Versions: Up to and including version 6.8
Operating Systems: Any OS running Java applications
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the File Compression Handler component specifically in the FilePackageManageAction.java file.

📦 What is this software?

Bbs by Diyhi

View all CVEs affecting Bbs →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Sensitive system information, configuration details, or user data could be exposed to unauthorized remote attackers.

🟠

Likely Case

Limited information disclosure revealing system paths, configuration parameters, or internal file structures.

🟢

If Mitigated

No data exposure if proper input validation and access controls are implemented.

🌐 Internet-Facing: HIGH - Remote exploitation is possible and public exploit exists.
🏢 Internal Only: MEDIUM - Internal attackers could still exploit but requires network access.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploit details are publicly available on GitHub. Requires manipulation of idGroup parameter.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 6.9 or later

Vendor Advisory: Not provided in CVE details

Restart Required: No

Instructions:

1. Check current diyhi bbs version. 2. Upgrade to version 6.9 or later. 3. Verify the FilePackageManageAction.java file has been updated.

🔧 Temporary Workarounds

Input Validation Filter

all

Implement server-side validation for idGroup parameter to prevent malicious input

Implement input validation in FilePackageManageAction.java to sanitize idGroup parameter

🧯 If You Can't Patch

  • Implement WAF rules to block suspicious requests to File Compression Handler endpoints
  • Restrict network access to diyhi bbs application to trusted IPs only

🔍 How to Verify

Check if Vulnerable:

Check diyhi bbs version number. If version is 6.8 or earlier, system is vulnerable.

Check Version:

Check application configuration files or admin panel for version information

Verify Fix Applied:

Verify version is 6.9 or later and test idGroup parameter manipulation no longer returns sensitive information.

📡 Detection & Monitoring

Log Indicators:

  • Unusual requests to FilePackageManageAction endpoints with manipulated idGroup parameters
  • Multiple failed attempts to access file compression functions

Network Indicators:

  • HTTP requests with unusual idGroup parameter values to file compression endpoints

SIEM Query:

source="web_server" AND uri="*FilePackageManageAction*" AND (param="idGroup" AND value!="normal_pattern")

📊 Metadata

CVE ID: CVE-2025-9461
CVSS v3 Score: 4.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-200
EPSS Score: 0.03% exploit probability (9.5th percentile)
Published: August 26, 2025
Last Updated: September 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-9461, you might also want to check these:

CVE-2025-61481 10.0

MikroTik RouterOS and SwOS expose their WebFig management interface over unencrypted HTTP by default...

Same vulnerability type (CWE-200)
CVE-2025-53624 10.0

The Docusaurus gists plugin versions before 4.0.0 expose GitHub Personal Access Tokens in client-sid...

Same vulnerability type (CWE-200)
CVE-2023-49103 10.0

This vulnerability in ownCloud's graphapi app exposes PHP configuration details (phpinfo) via a thir...

Same vulnerability type (CWE-200)