CVE-2025-12302
BaseFortify
Publication date: 2025-10-27
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| fabian | simple_food_ordering_system | 1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
| CWE-94 | The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-12302 is a stored Cross-Site Scripting (XSS) vulnerability in version 1.0 of the Simple Food Ordering System, specifically in the editproduct.php file. It occurs because user inputs in the parameters pname, category, and price are not properly sanitized or encoded before being stored and later displayed. This allows attackers to inject malicious scripts that persist on the server and execute in the browsers of users who visit the affected pages, potentially leading to unauthorized actions, session hijacking, and data theft. [1, 2, 3]
How can this vulnerability impact me? :
This vulnerability can allow attackers to execute malicious scripts in the browsers of legitimate users, leading to session hijacking, account takeover, data theft, unauthorized actions on behalf of users, phishing, malware distribution, reputation damage, and business disruption. Attackers can steal sensitive information and fully compromise user sessions, which can severely impact the security and integrity of the affected system. [1, 3]
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability poses risks that can lead to regulatory compliance violations, such as unauthorized access to sensitive data and compromise of user privacy, which are critical concerns under standards like GDPR and HIPAA. Exploitation could result in data breaches and loss of data integrity, potentially causing non-compliance with these regulations. [3]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by identifying the presence of the vulnerable 'editproduct.php' page in the Simple Food Ordering System version 1.0 and testing the parameters 'pname', 'category', and 'price' for improper input sanitization leading to stored XSS. One detection method is using Google dorking with the query 'inurl:editproduct.php' to find potentially vulnerable targets. Additionally, sending crafted POST requests with XSS payloads such as '<script>alert(1)</script>' to these parameters and observing if the script executes in the browser can confirm the vulnerability. Network monitoring tools can also be used to detect suspicious payloads or alert pop-ups in browsers. Example command using curl to test the vulnerability: curl -X POST -d "pname=<script>alert(1)</script>&category=test&price=10" http://targetsite/editproduct.php -v [2, 3]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include implementing context-aware output encoding on all user-controllable inputs, especially 'pname', 'category', and 'price', using functions like PHP's htmlspecialchars with ENT_QUOTES and UTF-8 encoding to neutralize malicious scripts before rendering. Applying strict Content Security Policy (CSP) headers with nonce or hash-based inline script restrictions can help prevent execution of injected scripts. Input validation using a whitelist approach should be enforced to restrict allowed input values. Additionally, security headers such as 'X-Content-Type-Options: nosniff', 'X-Frame-Options: DENY', and 'X-XSS-Protection: 1; mode=block' should be configured. Using Web Application Firewall (WAF) rules to detect and block XSS attempts is recommended. Long-term, consider replacing the affected software with a more secure alternative or updating the codebase to use modern frameworks with built-in XSS protections. [3]