CVE-2023-25292

MEDIUM

Group-Office 6.6.145 - Reflected Cross-Site Scripting via GO_LANGUAGE Cookie

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2023-25292. PoCs published by brainkok, tucommenceapousser.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2023-25292, a reflected XSS vulnerability in Group-Office version 6.6.145. It includes vulnerability details, impact assessment, remediation steps, and reproduction steps with a payload example.

Description

Reflected Cross Site Scripting (XSS) in Intermesh BV Group-Office version 6.6.145, allows attackers to gain escalated privileges and gain sensitive information via the GO_LANGUAGE cookie.

Exploits (2)

nomisec WRITEUP
by brainkok · poc
https://github.com/brainkok/CVE-2023-25292

This repository provides a detailed technical analysis of CVE-2023-25292, a reflected XSS vulnerability in Group-Office version 6.6.145. It includes vulnerability details, impact assessment, remediation steps, and reproduction steps with a payload example.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Group-Office 6.6.145
No auth needed
Prerequisites: Access to the vulnerable Group-Office instance · Ability to modify the GO_LANGUAGE cookie
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WRITEUP
by tucommenceapousser · poc
https://github.com/tucommenceapousser/CVE-2023-25292

This repository provides a detailed technical analysis of CVE-2023-25292, a reflected XSS vulnerability in Group-Office 6.6.145 via the GO_LANGUAGE cookie. It includes steps to reproduce, impact assessment, and remediation guidance.

Classification
Writeup 95%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Group-Office 6.6.145
No auth needed
Prerequisites: Access to a vulnerable Group-Office instance · Ability to modify the GO_LANGUAGE cookie
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Broken Link, Not Applicable
http://intermesh.com
Exploit, Third Party Advisory
https://github.com/brainkok/CVE-2023-25292

Scores

CVSS v3 6.1
EPSS 0.0076
EPSS Percentile 50.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (1)
group-office/group_office 6.6.145
Published Apr 27, 2023
Tracked Since Feb 18, 2026