CVE-2015-5534

Oxwall < 1.7.4 - Cross-Site Request Forgery via Maintenance Mode Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-5534. PoCs published by High-Tech Bridge SA.

AI-analyzed exploit summary This is a CSRF exploit for Oxwall 1.7.4 that allows an attacker to put the website under maintenance and inject arbitrary JavaScript code into the maintenance message, leading to potential XSS attacks against visitors.

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in Oxwall before 1.8 allow remote attackers to hijack the authentication of administrators for requests that (1) put the website under maintenance via the maintenance_enable parameter or (2) conduct cross-site scripting (XSS) attacks via the maintenance_text parameter to admin/pages/maintenance.

Exploits (1)

exploitdb WORKING POC
by High-Tech Bridge SA · textwebappsphp
https://www.exploit-db.com/exploits/38581

This is a CSRF exploit for Oxwall 1.7.4 that allows an attacker to put the website under maintenance and inject arbitrary JavaScript code into the maintenance message, leading to potential XSS attacks against visitors.

Classification
Working Poc 100%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Oxwall 1.7.4 and prior
Auth required
Prerequisites: Victim must be logged in as an administrator · Victim must visit a malicious page hosting the exploit
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/38581/
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/536784/100/0/threaded

Scores

EPSS 0.0233
EPSS Percentile 81.3%

Details

CWE
CWE-352
Status published
Products (1)
oxwall/oxwall < 1.7.4
Published Nov 02, 2015
Tracked Since Feb 18, 2026