CVE-2025-70849

MEDIUM

stefanprodan/podinfo < 6.9.0 - Unauthenticated Arbitrary File Upload and Stored Cross-Site Scripting via /store Endpoint

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2025-70849. PoCs published by HORKimhab, deaprojects, kazisabu.

AI-analyzed exploit summary The repository contains no functional exploit code, only a template README with generic usage instructions and a placeholder file for CVE ID naming conventions. No technical details about CVE-2025-70849 are provided.

Description

Arbitrary File Upload in podinfo thru 6.9.0 allows unauthenticated attackers to upload arbitrary files via crafted POST request to the /store endpoint. The application renders uploaded content without a restrictive Content-Security-Policy (CSP) or adequate Content-Type validation, leading to Stored Cross-Site Scripting (XSS).

Exploits (3)

github STUB
by HORKimhab · poc
https://github.com/HORKimhab/CVE-2025-70849

The repository contains no functional exploit code, only a template README with generic usage instructions and a placeholder file for CVE ID naming conventions. No technical details about CVE-2025-70849 are provided.

Classification
Stub 95%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: unspecified
No auth needed
devstral-2 · analyzed Jun 02, 2026 Full analysis →
nomisec WORKING POC
by deaprojects · poc
https://github.com/deaprojects/CVE-2025-70849

The repository contains a functional Python script that exploits a Stored XSS vulnerability in Podinfo (CVE-2025-70849) by sending a malicious payload to the `/store` endpoint and retrieving the stored content via a generated hash. The script includes multi-threaded scanning capabilities and real-time output logging.

Classification
Working Poc 95%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Podinfo <= 6.10.0
No auth needed
Prerequisites: target URL list · network access to the target
devstral-2 · analyzed May 16, 2026 Full analysis →
nomisec WORKING POC
by kazisabu · poc
https://github.com/kazisabu/CVE-2025-70849-Podinfo

The repository provides a functional Proof of Concept (PoC) for CVE-2025-70849, demonstrating a Stored XSS vulnerability in Podinfo. The exploit involves sending a malicious payload via a POST request to the `/store` endpoint, which then executes arbitrary JavaScript when accessed.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Podinfo <= 6.10.0
No auth needed
Prerequisites: Access to the `/store` endpoint of the target Podinfo instance
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 6.1
EPSS 0.0002
EPSS Percentile 6.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-79 CWE-434
Status published
Products (2)
stefanprodan/podinfo < 6.9.0
stefanprodan/podinfo 0Go
Published Feb 03, 2026
Tracked Since Feb 18, 2026