Low severity3.5NVD Advisory· Published Jul 20, 2025· Updated Apr 29, 2026
CVE-2025-7902
CVE-2025-7902
Description
A vulnerability classified as problematic has been found in yangzongzhuan RuoYi up to 4.8.1. Affected is the function addSave of the file com/ruoyi/web/controller/system/SysNoticeController.java. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=4.8.1
Patches
Vulnerability mechanics
References
5- github.com/yangzongzhuan/RuoYi/issues/294nvdExploit
- github.com/yangzongzhuan/RuoYi/issues/294nvdExploit
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.