Low severity3.5NVD Advisory· Published Aug 11, 2025· Updated Apr 29, 2026
CVE-2025-8847
CVE-2025-8847
Description
A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. Affected by this vulnerability is the function Edit of the file /system/notice/edit. The manipulation of the argument noticeTitle/noticeContent leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=4.8.1
Patches
Vulnerability mechanics
References
5- github.com/yangzongzhuan/RuoYi/issues/298nvdExploitIssue TrackingVendor Advisory
- github.com/yangzongzhuan/RuoYi/issues/298nvdExploitIssue TrackingVendor Advisory
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.