FlagForgeCTF Hint Exposure via API_CVE-2025-59833

7.5 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Description

Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.

Basic Information

ID CVE-2025-59833

Source GitHub_M

Published Sep 24, 2025 at 20:25

Modified Sep 24, 2025 at 20:44

Affected Product

Vendor FlagForgeCTF

Product flagForge

Version >= 2.1.0, < 2.3.0

Affected Versions FlagForgeCTF flagForge >= 2.1.0, < 2.3.0

CWE Classification

CWE-200

References

github.com /FlagForgeCTF/flagForge/security/advisories/GHSA-hm85-2j65-j8j2

{
    "lastseen": "",
    "description": "Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.",
    "published": "2025-09-24T20:25:35.167Z",
    "modified": "2025-09-24T20:44:08.116Z",
    "type": "cve",
    "title": "FlagForgeCTF Hint Exposure via API",
    "source": "GitHub_M",
    "references": "https://github.com/FlagForgeCTF/flagForge/security/advisories/GHSA-hm85-2j65-j8j2",
    "id": "CVE-2025-59833",
    "bulletinFamily": "",
    "cwe": [
        "CWE-200"
    ],
    "cvelist": null,
    "sourceData": "FlagForgeCTF flagForge >= 2.1.0, < 2.3.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "flagForge",
    "version": ">= 2.1.0, < 2.3.0",
    "vendor": "FlagForgeCTF",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}