CVE-2025-59843

MEDIUM

Flag Forge <2.3.2 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-59843. PoCs published by At0mXploit.

AI-analyzed exploit summary The repository contains a working PoC for CVE-2025-59843 and CVE-2025-59932, demonstrating unauthenticated access to user email addresses and potential unauthenticated resource modification/deletion in the FlagForge Web Application.

Description

Flag Forge is a Capture The Flag (CTF) platform. From versions 2.0.0 to before 2.3.2, the public endpoint /api/user/[username] returns user email addresses in its JSON response. The fix, intended for release in 2.3.1 but only available starting in version 2.3.2, removes email addresses from public API responses while keeping the endpoint publicly accessible. Users should upgrade to version 2.3.2 or later to eliminate exposure. There are no workarounds for this vulnerability.

Exploits (1)

nomisec WORKING POC 1 stars
by At0mXploit · poc
https://github.com/At0mXploit/CVE-2025-59843-CVE-2025-59932

The repository contains a working PoC for CVE-2025-59843 and CVE-2025-59932, demonstrating unauthenticated access to user email addresses and potential unauthenticated resource modification/deletion in the FlagForge Web Application.

Classification
Working Poc 90%
Attack Type
Info Leak | Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: FlagForge Web Application
No auth needed
Prerequisites: Access to the target API endpoints
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 5.3
EPSS 0.0040
EPSS Percentile 31.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-359
Status published
Products (1)
flagforge/flagforge 2.0 - 2.3.1
Published Sep 26, 2025
Tracked Since Feb 18, 2026