CVE-2025-50938
BaseFortify
Publication date: 2025-08-19
Last updated on: 2025-10-07
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| hustoj | hustoj | 25.01.31 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-50938 is a Cross-Site Scripting (XSS) vulnerability in the Hustoj online judge system, specifically in the thread.php file. The vulnerability occurs because the thread title is output without proper sanitization, allowing an attacker to inject malicious JavaScript code via the title field when creating a new post. When other users view the affected thread, the malicious script executes in their browsers. [2]
How can this vulnerability impact me? :
This vulnerability can allow attackers to execute arbitrary JavaScript in the browsers of users who view the affected threads. This can lead to theft of user credentials, session hijacking, defacement, or redirection to malicious sites, compromising user security and trust in the system. [2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
You can detect this vulnerability by testing the thread.php endpoint for XSS via the TID parameter. For example, try submitting a post with a malicious script tag in the title field via /newpost.php, then access /thread.php?tid={TID} to see if the script executes. A simple test command using curl could be: curl -X POST -d "title=<script>alert(1)</script>&other_params=..." https://your-hustoj-domain/newpost.php Then visit: curl https://your-hustoj-domain/thread.php?tid={TID} and check if the script tag is reflected and executed in the response HTML. Manual inspection or automated scanning tools that test for reflected XSS on the TID parameter can also be used. [2]
What immediate steps should I take to mitigate this vulnerability?
The immediate mitigation is to sanitize the thread title output in thread.php by applying htmlspecialchars() or an equivalent function to the $row['title'] variable before rendering it. This prevents execution of injected scripts. Until a patch is applied, avoid allowing untrusted users to create posts or restrict posting privileges. Review and update the code around lines 68-69 in web/thread.php to ensure proper escaping of user input. [2]