CVE-2025-24967— Stored XSS on Admin Panel When Deleting a User in reNgine
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-24967
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Stored XSS on Admin Panel When Deleting a User in reNgine
Source: NVD (National Vulnerability Database)
Vulnerability Description
reNgine is an automated reconnaissance framework for web applications. A stored cross-site scripting (XSS) vulnerability exists in the admin panel's user management functionality. An attacker can exploit this issue by injecting malicious payloads into the username field during user creation. This vulnerability allows unauthorized script execution whenever the admin views or interacts with the affected user entry, posing a significant risk to sensitive admin functionalities. This issue affects all versions up to and including 2.20. Users are advised to monitor the project for future releases which address this issue. There are no known workarounds.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Source: NVD (National Vulnerability Database)
Vulnerability Title
reNgine 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
reNgine是Yogesh Ojha个人开发者的一个用于 Web 应用程序的自动侦察框架。专注于通过引擎、侦察数据关联和组织、持续监控、由数据库和简单而直观的用户界面支持的高度可配置的流线型侦察过程。 reNgine 2.2.0及之前版本存在跨站脚本漏洞,该漏洞源于存在存储型跨站脚本(XSS)漏洞,允许在管理员查看或与受影响的用户条目交互时执行未经授权的脚本,对敏感的管理功能构成重大风险。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| yogeshojha | rengine | <= 2.2.0 | - |
II. Public POCs for CVE-2025-24967
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-24967
请登录查看更多情报信息。
Same Patch Batch · yogeshojha · 2025-02-04 · 3 CVEs total
| CVE-2025-24968 | 8.8 HIGH | Business Logic And Unrestricted Project Deletion Lead To Take Over the System in reNgine |
| CVE-2025-24966 | HTML Injection in reNgine |
IV. Related Vulnerabilities
Same product: rengine
- CVE-2024-58287
reNgine 2.2.0 Authenticated Command Injection via Scan Engin - CVE-2025-24968
Business Logic And Unrestricted Project Deletion Lead To Tak - CVE-2025-24966
HTML Injection in reNgine - CVE-2025-24899
Disclosure of Sensitive User Information via API in reNgine - CVE-2025-24962
Command Injection in reNgine
Same vendor: yogeshojha
- CVE-2025-24968
Business Logic And Unrestricted Project Deletion Lead To Tak - CVE-2025-24966
HTML Injection in reNgine - CVE-2025-24899
Disclosure of Sensitive User Information via API in reNgine - CVE-2025-24962
Command Injection in reNgine - CVE-2024-43381
reNgine vulnerable to Stored Cross-Site Scripting (XSS) via
Same weakness: CWE-79
- CVE-2026-8262
Devs Palace ERP Online chart-save cross site scripting - CVE-2026-8256
Devs Palace ERP Online mr-save cross site scripting - CVE-2026-8255
Devs Palace ERP Online add_new_customer cross site scripting - CVE-2026-8254
Devs Palace ERP Online sales_save cross site scripting - CVE-2026-8253
Devs Palace ERP Online purchase_save cross site scripting
V. Comments for CVE-2025-24967
No comments yet