CVE-2025-3966

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-3966

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-3966.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-3966

Published

2025-04-27T10:15:15Z

Modified

2025-06-07T03:52:59.581886Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

A vulnerability was found in itwanger paicoding 1.0.3 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/home?userId=1&homeSelectType=read of the component Browsing History Handler. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

References

Affected packages

Git / github.com/itwanger/paicoding

Affected ranges

Type: GIT
Repo: https://github.com/itwanger/paicoding
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

1fecb6e3135b07e664c3b546ceb74a167c0501f6

Affected versions

1.*

1.0.0

1.0.1

1.0.2

1.0.3-微信支付