CVE-2025-62784

Name of the Vulnerable Software and Affected Versions InventoryGui versions prior to 1.6.5

Description InventoryGui is a library used for creating chest GUIs for Bukkit/Spigot plugins. A flaw exists in versions before 1.6.5 where item duplication can occur. This happens when a plugin utilizes a GUI with the GuiStorageElement and allows items to be removed from that element, specifically when the server’s experimental Bundle item feature is enabled.

Recommendations Versions prior to 1.6.5 should be updated to version 1.6.5.