CVE-2025-3535

MEDIUM

shuanx BurpAPIFinder <2.0.2 - DoS

Title source: llm

Description

A vulnerability has been found in shuanx BurpAPIFinder up to 2.0.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file BurpApiFinder.db. The manipulation leads to denial of service. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

References (5)

[Permissions Required, VDB Entry] https://vuldb.com/?submit.545457

[Issue Tracking] https://github.com/shuanx/BurpAPIFinder/issues/18

[Issue Tracking] https://github.com/shuanx/BurpAPIFinder/issues/18#issue-2956026808

[Permissions Required, VDB Entry] https://vuldb.com/?id.304573

[Permissions Required, VDB Entry] https://vuldb.com/?ctiid.304573

Scores

CVSS v3 4.3

EPSS 0.0032

EPSS Percentile 54.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-404

Status published

Products (3)

shuanx/BurpAPIFinder 2.0.0

shuanx/BurpAPIFinder 2.0.1

shuanx/BurpAPIFinder 2.0.2

Published Apr 13, 2025

Tracked Since Feb 18, 2026