CVE-2025-62783

CVSS v3.1

5.0

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions InventoryGui versions 1.6.1-SNAPSHOT and earlier

Description A flaw exists in InventoryGui that could allow item duplication when the experimental Bundle item feature is enabled on the server. This issue affects any plugin utilizing the GuiStorageElement. The vulnerability is related to the use of the GuiStorageElement within GUIs.

Recommendations Update to version 1.6.2-SNAPSHOT. Avoid using the GuiStorageElement in GUIs.

Exploit

Fix

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-837CWE-754

Related Identifiers

CVE-2025-62783

GHSA-598Q-JW82-5W66

Affected Products

Inventorygui

CVE-2025-62783

Weakness Enumeration

Related Identifiers

Affected Products

References · 10