CVE-2025-29710 – SourceCodester Company Website CMS 1.0 contains... (How to Fix)

Q: What is the severity of CVE-2025-29710?

CVE-2025-29710 has a CVSS score of 6.1 (MEDIUM). SourceCodester Company Website CMS 1.0 contains a stored cross-site scripting (XSS) vulnerability in the /dashboard/Services endpoint. This allows attackers to inject malicious scripts that execute in users' browsers when viewing affected pages. Organizations using this specific CMS version are affected.

📋 TL;DR

SourceCodester Company Website CMS 1.0 contains a stored cross-site scripting (XSS) vulnerability in the /dashboard/Services endpoint. This allows attackers to inject malicious scripts that execute in users' browsers when viewing affected pages. Organizations using this specific CMS version are affected.

💻 Affected Systems

Products:

SourceCodester Company Website CMS

Versions: 1.0

Operating Systems: Any OS running PHP

Default Config Vulnerable: ⚠️ Yes

Notes: Requires the /dashboard/Services endpoint to be accessible and used for content management.

📦 What is this software?

Company Website Cms by Torrahclef

View all CVEs affecting Company Website Cms →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could steal administrator session cookies, perform actions as authenticated users, deface websites, or redirect users to malicious sites.

🟠

Likely Case

Session hijacking leading to unauthorized administrative access, website defacement, or credential theft.

🟢

If Mitigated

Limited impact with proper input validation and output encoding, though some risk remains.

🌐 Internet-Facing: HIGH - Web applications with public access are primary targets for XSS exploitation.

🏢 Internal Only: MEDIUM - Internal users could still be targeted through phishing or compromised accounts.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires access to the dashboard (typically authenticated), but XSS payloads can affect other users.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: Not available

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available or implementing workarounds.

🔧 Temporary Workarounds

Input Validation and Output Encoding

all

Implement proper input validation and HTML encoding for all user inputs in the Services functionality.

Modify PHP files to use htmlspecialchars() or similar functions on output

Content Security Policy (CSP)

all

Implement a strict Content Security Policy header to mitigate XSS impact.

Header set Content-Security-Policy "default-src 'self'; script-src 'self'" in .htaccess or server config

🧯 If You Can't Patch

Restrict access to /dashboard/Services endpoint using IP whitelisting or authentication requirements
Implement web application firewall (WAF) rules to block XSS payloads

🔍 How to Verify

Check if Vulnerable:

Test by submitting a simple XSS payload like <script>alert('XSS')</script> to the Services input fields and check if it executes when viewing the page.

Check Version:

Check CMS version in admin panel or configuration files; typically found in readme.txt or version.php files.

Verify Fix Applied:

After implementing fixes, test with the same XSS payloads to ensure they are properly sanitized and don't execute.

📡 Detection & Monitoring

Log Indicators:

Unusual POST requests to /dashboard/Services with script tags or JavaScript code
Multiple failed login attempts followed by Services modifications

Network Indicators:

HTTP requests containing common XSS payload patterns to the vulnerable endpoint

SIEM Query:

source="web_logs" AND (uri_path="/dashboard/Services" AND (request_body CONTAINS "<script>" OR request_body CONTAINS "javascript:"))

📊 Metadata

CVE ID: CVE-2025-29710

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE: CWE-79

EPSS Score: 0.18% exploit probability (39.7th percentile)

Published: April 16, 2025

Last Updated: April 23, 2025

🔗 References

https://github.com/fupanc-w1n/fupanc/blob/main/php/CVE-2025-29710.md Third Party Advisory
https://github.com/fupanc-w1n/fupanc/blob/main/php/Company%20Website%20CMS3.md Exploit,Third Party Advisory
https://github.com/fupanc-w1n/fupanc/blob/main/php/Company%20Website%20CMS3.md Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-29710, you might also want to check these: