CVE-2025-53533 PoC — Pi-hole Admin Interface vulnerable to cross-site scripting via malformed URL path on 404 error page

Title:Pi-hole Admin Interface vulnerable to cross-site scripting via malformed URL path on 404 error page (CVE-2025-53533)
Description:Pi-hole Admin Interface is a web interface for managing Pi-hole, a network-level advertisement and internet tracker blocking application. Pi-hole Admin Interface versions 6.2.1 and earlier are vulnerable to reflected cross-site scripting (XSS) via a malformed URL path. The 404 error page includes the requested path in the class attribute of the body tag without proper sanitization or escaping. An attacker can craft a URL containing an onload attribute that will execute arbitrary JavaScript code in the browser when a victim visits the malicious link. If an attacker sends a crafted pi-hole link to a victim and the victim visits it, attacker-controlled JavaScript code is executed in the browser of the victim. This has been patched in version 6.3.

Cross-Site-Scripting XSS in Pi-hole-CVE-2025-53533 exploit (PoC)

# Cross-Site-Scripting XSS in Pi-hole-CVE-2025-53533 exploit (PoC)

Proof-of-Concept exploit for unauthenticated reflected XSS in Pi-hole Web Interface (v6.2.1). Patched in v6.3.

# Quick Start

```bash
git clone https://github.com/moezbouzayani9/Pi-hole-XSS-CVE-2025-53533.git
cd Pi-hole-XSS-CVE-2025-53533
python3 CVE-2025-53533.py
```
Happy ethical hacking! 

⚠️ Legal
For authorized testing only. Always get permission before exploiting.

 [4.0K]  /data/pocs/b23ceaa7b6cc6ef542aa84e379374798f8b8834a
├── [1.9K]  CVE-2025-53533.py
└── [ 446]  README.md

1 directory, 2 files