Home

Description

There is an arbitrary file download vulnerability in GuoMinJim PersonManage thru commit 5a02b1ab208feacf3a34fc123c9381162afbaa95 (2020-11-23) in the document query function under the Download Center menu in the PersonManage system.

PUBLISHED Reserved 2025-10-27 | Published 2025-11-07 | Updated 2025-11-07 | Assigner mitre

References

github.com/GuoMinJim/PersonManage/issues/10

gist.github.com/LockeTom/95b2a47f2dcb27e62690754993a4c7cd

cve.org (CVE-2025-63686)

nvd.nist.gov (CVE-2025-63686)

Download JSON