CVE-2025-8772 – This vulnerability allows attackers to perform ... (How to Fix)

Q: What is the severity of CVE-2025-8772?

CVE-2025-8772 has a CVSS score of 4.3 (MEDIUM). This vulnerability allows attackers to perform server-side request forgery (SSRF) attacks against NukeViet CMS installations. Attackers can manipulate the module handler's upload functionality to make the server send requests to internal or external systems. All NukeViet installations up to version 4.5.06 are affected.

📋 TL;DR

This vulnerability allows attackers to perform server-side request forgery (SSRF) attacks against NukeViet CMS installations. Attackers can manipulate the module handler's upload functionality to make the server send requests to internal or external systems. All NukeViet installations up to version 4.5.06 are affected.

💻 Affected Systems

Products:

Vinades NukeViet

Versions: up to 4.5.06

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Requires admin access to the vulnerable endpoint, but the vulnerability exists in default configurations.

📦 What is this software?

Nukeviet by Nukeviet

View all CVEs affecting Nukeviet →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could access internal services, exfiltrate sensitive data, or use the vulnerable server as a proxy for attacks against other systems.

🟠

Likely Case

Information disclosure from internal services, port scanning of internal networks, or limited data exfiltration.

🟢

If Mitigated

Limited impact if network segmentation restricts internal service access and egress filtering blocks external requests.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploit details are publicly available, and the vulnerability requires admin access to the /admin/index.php endpoint.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Consider upgrading to the latest version if it addresses this vulnerability, or implement workarounds.

🔧 Temporary Workarounds

Restrict Admin Access

all

Limit access to the /admin/ directory to trusted IP addresses only

# Apache: <Location /admin/>
#   Require ip 192.168.1.0/24
# </Location>
# Nginx: location /admin/ {
#   allow 192.168.1.0/24;
#   deny all;
# }

Input Validation

all

Add validation to reject URLs in the vulnerable parameter

# In /admin/index.php, add validation for the 'nv' parameter
# Example: if (isset($_GET['nv']) && strpos($_GET['nv'], 'upload') !== false) {
#   // Validate and sanitize input
# }

🧯 If You Can't Patch

Implement network segmentation to isolate the NukeViet server from sensitive internal services
Deploy a web application firewall (WAF) with SSRF protection rules

🔍 How to Verify

Check if Vulnerable:

Check if your NukeViet version is 4.5.06 or earlier and if the /admin/index.php?language=en&nv=upload endpoint is accessible

Check Version:

Check the NukeViet version in the admin panel or look for version information in the source code

Verify Fix Applied:

Test if SSRF attempts through the vulnerable endpoint are blocked or properly validated

📡 Detection & Monitoring

Log Indicators:

Unusual requests to /admin/index.php with 'nv=upload' parameter containing URLs
Outbound requests from the server to unusual internal or external IPs

Network Indicators:

Unexpected outbound connections from the web server to internal services

SIEM Query:

web.url:"/admin/index.php" AND web.param:"nv=upload" AND (web.param:"http://" OR web.param:"https://")

📊 Metadata

CVE ID: CVE-2025-8772

CVSS v3 Score: 4.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWE: CWE-918

EPSS Score: 0.03% exploit probability (7.6th percentile)

Published: August 9, 2025

Last Updated: September 15, 2025

🔗 References

https://hkohi.ca/vulnerability/19 Exploit,Third Party Advisory
https://vuldb.com/?ctiid.319295 Permissions Required,VDB Entry
https://vuldb.com/?id.319295 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.624976 Exploit,Third Party Advisory,VDB Entry
https://hkohi.ca/vulnerability/19 Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-8772, you might also want to check these: