CVE-2025-62783
MEDIUM5.0EPSS 0.02%InventoryGui affected by item duplication in GUIs which use GuiStorageElement
Published: 10/27/2025Modified: 10/27/2025
Description
### Impact Any plugin using the `GuiStorageElement` is impacted. ### Patches Patched with https://github.com/Phoenix616/InventoryGui/commit/27a52ef6d934a1c232e110e0010e4aa810c27029 ("backported" to 1.6.1-SNAPSHOT) Update to 1.6.2-SNAPSHOT to guarantee that it's included! ### Workarounds Don't use the `GuiStorageElement` in GUIs. ### References Original issue: https://github.com/Phoenix616/InventoryGui/issues/48
Affected packages (1)
- Maven/de.themoep:inventoryguifrom 0, < 1.6.2-SNAPSHOT
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.0 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N |
References (5)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2025-62783
- PATCHhttps://github.com/Phoenix616/InventoryGui
- WEBhttps://github.com/Phoenix616/InventoryGui/commit/27a52ef6d934a1c232e110e0010e4aa810c27029
- WEBhttps://github.com/Phoenix616/InventoryGui/issues/48
- WEBhttps://github.com/Phoenix616/InventoryGui/security/advisories/GHSA-598q-jw82-5w66