Plain Craft Launcher (PCL) is a launcher for Minecraft. PCL allows users to use homepages provided by third parties. If controls such as WebBrowser ar

BROWSER

06-04-2025 17:20

CVE-2025-31488 Vulnerabilidad documentada

4.9 MEDIUM

Tags

#wp

#web

#home

#browser

#vulnerability

#malicious

#fix

#allow

#attack

#access

Descripción

Plain Craft Launcher (PCL) is a launcher for Minecraft. PCL allows users to use homepages provided by third parties. If controls such as WebBrowser are used in the homepage, WPF will Internet Explorer load specified webpage. user uses malicious attacker can IE background access webpage without knowing it. This vulnerability fixed 2.9.3.

https://github.com/Hex-Dragon/PCL2/security/advisories/GHSA-wfpw-hfcp-9m73

Referencia

Link externo

Ver detalles

Fuente

https://nvd.nist.gov/vuln/detail/CVE-2025-31488

Resultados similares

Coincidentes en almenos en 50% de los tags

16-03-2026 CVE-2016-20032
ZKTeco ZKAccess Security System 5.3.1 contains a stored cross-site scripting vulnerability that...
Ver información

16-03-2026 CVE-2016-20027
ZKTeco ZKBioSecurity 3.0 contains multiple reflected cross-site scripting vulnerabilities that ...
Ver información