CVE-2025-52392

MEDIUM

Soosyze CMS 2.0 - Brute-Force Login via Unrestricted Authentication Attempts

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-52392. PoCs published by Beatriz Fresno Naumova, ftz7.

AI-analyzed exploit summary This script demonstrates a brute-force attack against Soosyze CMS 2.0 by exploiting missing rate limiting on the login endpoint. It automates POST requests with a wordlist or default passwords to bypass authentication.

Description

Soosyze CMS 2.0 allows brute-force login attacks via the /user/login endpoint due to missing rate-limiting and lockout mechanisms. An attacker can repeatedly submit login attempts without restrictions, potentially gaining unauthorized administrative access. This vulnerability corresponds to CWE-307: Improper Restriction of Excessive Authentication Attempts.

Exploits (2)

exploitdb WORKING POC

by Beatriz Fresno Naumova · textwebappsmultiple

https://www.exploit-db.com/exploits/52416

View Code ZIP pw:eip

This script demonstrates a brute-force attack against Soosyze CMS 2.0 by exploiting missing rate limiting on the login endpoint. It automates POST requests with a wordlist or default passwords to bypass authentication.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Soosyze CMS 2.0

No auth needed

Prerequisites: Known username/email · Access to login endpoint

MITRE ATT&CK

T1110 - Brute Force

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 1 stars

by ftz7 · poc

https://github.com/ftz7/Soosyze-CMS-2.0---CVE-2025-52392

View Code ZIP pw:eip

This repository contains a functional Bash script that demonstrates a brute-force attack against a login form in Soosyze CMS 2.0, exploiting the lack of rate limiting or other protections. The script automates the process of capturing CSRF tokens, submitting login attempts, and detecting successful authentication via response analysis.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Soosyze CMS 2.0

No auth needed

Prerequisites: Access to the login form endpoint · Valid target email address · Wordlist or default password list

MITRE ATT&CK

T1110 - Brute Force

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Core References

Various Sources

https://beafn28.gitbook.io/beafn28/cve/brute-force-login-vulnerability-in-soosyze-cms-2.0-cve-2025-52392

Exploit, Third Party Advisory

https://www.exploit-db.com/exploits/52416

Issue Tracking

https://github.com/soosyze/soosyze/issues/269

Scores

CVSS v3 5.4

EPSS 0.0275

EPSS Percentile 86.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-307

Status published

Products (1)

soosyze/soosyze 0Packagist

Published Aug 13, 2025

Tracked Since Feb 18, 2026