CVE-2025-7885
BaseFortify
Publication date: 2025-07-20
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| huashengdun | webssh | to 1.6.2 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
| CWE-94 | The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-7885 is a reflected Cross-Site Scripting (XSS) vulnerability in Huashengdun WebSSH up to version 1.6.2, specifically affecting the Login Page component. It occurs because the application improperly handles user input in the 'port' (and also 'hostname') parameter, allowing an attacker to inject malicious JavaScript code that is then executed in the victim's browser when they visit a crafted URL. This can lead to actions like session hijacking or data theft. The vulnerability can be exploited remotely without authentication but requires user interaction. [1, 2, 3]
How can this vulnerability impact me? :
This vulnerability can impact you by allowing attackers to execute arbitrary JavaScript code in your browser when you visit a maliciously crafted URL targeting the vulnerable WebSSH application. This can lead to session hijacking, theft of sensitive data, or other malicious actions performed in the context of your browser session. Since the attack can be launched remotely and does not require authentication, it poses a risk to any user accessing the affected login page. [1, 2, 3]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by testing the 'port' parameter of the Huashengdun WebSSH login page for reflected cross-site scripting (XSS). One way to detect it is by sending a crafted URL with a script injection in the 'port' parameter and observing if the script executes in the browser. For example, visiting a URL like: https://webssh.huashengdun.org/?port=<script>alert("1")</script> will trigger the XSS if vulnerable. Automated tools or manual testing with curl or browser-based testing can be used. Example curl command to test the response: curl -i "https://webssh.huashengdun.org/?port=<script>alert(1)</script>" and then inspect the response for reflected script tags. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include avoiding use of the affected Huashengdun WebSSH versions up to 1.6.2, as no official patches or vendor responses are available. Consider replacing the affected product with an alternative solution. Additionally, implement web application firewall (WAF) rules to block or sanitize requests containing suspicious script injections in the 'port' parameter. Educate users to avoid clicking on suspicious URLs. Since the vulnerability requires user interaction, limiting exposure can reduce risk. [3]