CVE-2025-1337

LOW LAB

Eastnets PaymentSafe <2.5.26.0 - XSS

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-1337. PoCs published by adminlove520, ada-z3r0.

AI-analyzed exploit summary The repository contains functional exploit code for multiple CVEs, including authentication bypass vulnerabilities in TOTOLINK devices and a scanner for Fortinet SSL VPN (CVE-2024-21762). The PoCs demonstrate the vulnerabilities with clear technical details and functional code.

Description

A vulnerability was found in Eastnets PaymentSafe 2.5.26.0. It has been classified as problematic. This affects an unknown part of the component BIC Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 2.5.27.0 is able to address this issue.

Exploits (2)

github WORKING POC 2 stars

by adminlove520 · pythonpoc

https://github.com/adminlove520/CVE-Poc_All_in_One/tree/main/2025/CVE-2025-1337

View Code ZIP pw:eip

The repository contains functional exploit code for multiple CVEs, including authentication bypass vulnerabilities in TOTOLINK devices and a scanner for Fortinet SSL VPN (CVE-2024-21762). The PoCs demonstrate the vulnerabilities with clear technical details and functional code.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: TOTOLINK LR350, TOTOLINK T6, Fortinet SSL VPN

No auth needed

Prerequisites: network access to the target device

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1078 - Valid Accounts

devstral-2 · analyzed Feb 27, 2026 Full analysis →

nomisec WORKING POC

by ada-z3r0 · poc

https://github.com/ada-z3r0/CVE-2025-1337-PoC

View Code ZIP pw:eip

This PoC demonstrates a deserialization vulnerability in LogServ v1.2, allowing unauthenticated RCE via a malicious session cookie. The payload is a simple base64-encoded command, and the exploit sends it to the target URL.

Classification

Working Poc 80%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: LogServ v1.2

No auth needed

Prerequisites: Target running LogServ v1.2 · Network access to the target

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Permissions Required, VDB Entry vdb-entry technical-description

https://vuldb.com/?id.295953

Permissions Required, VDB Entry signature permissions-required

https://vuldb.com/?ctiid.295953

Permissions Required, VDB Entry third-party-advisory

https://vuldb.com/?submit.493686

Various Sources broken-link

https://drive.google.com/file/d/1uTRLoCnOGcXtSpoZO8xyPakhIO4MbCMk/view?usp=sharing

Scores

CVSS v3 3.5

EPSS 0.0048

EPSS Percentile 37.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Lab Environment

COMMUNITY

Community Lab

docker pull mariadb:10.6

https://github.com/ada-z3r0/CVE-2025-1337-PoC

https://github.com/adminlove520/CVE-Poc_All_in_One

View in Library

Details

CWE

CWE-79 CWE-94

Status published

Products (1)

Eastnets/PaymentSafe 2.5.26.0

Published Feb 16, 2025

Tracked Since Feb 18, 2026