CVE-2025-50754

CRITICAL

Unisite CMS 5.0 - Stored Cross-Site Scripting in Report Functionality

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-50754. PoCs published by furk4nyildiz.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2025-50754, a stored XSS vulnerability in a PHP-based CMS platform that can be chained to achieve remote code execution. The writeup includes attack vectors, exploitation steps, and mitigation strategies but does not contain functional exploit code.

Description

Unisite CMS version 5.0 contains a stored Cross-Site Scripting (XSS) vulnerability in the "Report" functionality. A malicious script submitted by an attacker is rendered in the admin panel when viewed by an administrator. This allows attackers to hijack the admin session and, by leveraging the template editor, upload and execute a PHP web shell on the server, leading to full remote code execution.

Exploits (1)

nomisec WRITEUP 4 stars
by furk4nyildiz · poc
https://github.com/furk4nyildiz/CVE-2025-50754-PoC

This repository provides a detailed technical analysis of CVE-2025-50754, a stored XSS vulnerability in a PHP-based CMS platform that can be chained to achieve remote code execution. The writeup includes attack vectors, exploitation steps, and mitigation strategies but does not contain functional exploit code.

Classification
Writeup 95%
Attack Type
Xss
Complexity
Moderate
Reliability
Reliable
Target: PHP-based CMS Platform v5
No auth needed
Prerequisites: Access to the public-facing 'Report' feature · Administrator interaction to view the malicious report
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 9.6
EPSS 0.0054
EPSS Percentile 40.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-79
Status published
Published Aug 04, 2025
Tracked Since Feb 18, 2026