CVE-2025-62784 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

InventoryGui is a library for creating chest GUIs for Bukkit/Spigot plugins. Versions before 1.6.5 contain a vulnerability where any plugin using a GUI with the…
Medium CVSS: 5.3

CVE-2025-62784

InventoryGui is a library for creating chest GUIs for Bukkit/Spigot plugins. Versions before 1.6.5 contain a vulnerability where any plugin using a GUI with the GuiStorageElement and allows taking out items out of that element can allow item duplication when the experimental Bundle item feature is enabled on the server. The vulnerability is resolved in version 1.6.5.
Vendor
Phoenix616
Product
Inventorygui
CWE
CWE-837
Yayın Tarihi
2025-10-27 21:15:38
Güncelleme
2025-11-04 14:59:16
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-837 Inventorygui MEDIUM Phoenix616 2025

Referanslar

https://github.com/Phoenix616/InventoryGui/commit/690fc91d137c6cc04f6ed3a89449050964dd8cb9 https://github.com/Phoenix616/InventoryGui/security/advisories/GHSA-7whh-79j3-7c55