CVE-2025-46041 PoC — Anchor CMS 安全漏洞

Source

https://github.com/binneko/CVE-2025-46041

Associated Vulnerability

Title:Anchor CMS 安全漏洞 (CVE-2025-46041)
Description:Anchor CMS是Anchor团队的一个CMS项目。 Anchor CMS v0.12.7版本存在安全漏洞，该漏洞源于页面创建界面中的页面描述字段容易受到存储型跨站脚本攻击。

Readme

# Anchor CMS v0.12.7 - Stored XSS (CVE-2025-46041)

Anchor CMS v0.12.7 is vulnerable to a **Stored Cross-Site Scripting (XSS)** vulnerability in the `description` field of the `/admin/pages/add` interface.

## CVE ID

[CVE-2025-46041](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46041)

## Summary

* **Type:** Stored XSS
* **Location:** Page creation interface (`/admin/pages/add`)
* **Impact:** Arbitrary JavaScript execution
* **Authentication Required:** Yes (admin or editor user)
* **Affected Version:** Anchor CMS v0.12.7 (latest stable at time of discovery)

## Proof of Concept

1. Login to `/admin`
2. Go to `Pages > Add Page`
3. In the `Description` field, insert:

   ```html
   <script>alert(document.domain)</script>
   ```
4. Save the page.
5. Revisit the page view — the payload executes.

## Affected Component

* File: `anchor/routes/pages.php`
* Field: `description`

## Tested On

* Ubuntu 22.04
* Apache2 + PHP 8.1
* Anchor CMS v0.12.7 (fresh install)

## Discoverer

[@binneko](https://github.com/binneko)

## References

* [Anchor CMS GitHub](https://github.com/anchorcms/anchor-cms)
* [CVE Record - CVE-2025-46041](https://cve.mitre.org)

## Disclaimer

For educational and defensive purposes only.

File Snapshot


 [4.0K]  /data/pocs/0fe57b728b513289b66598af9fb2e7e594a8ce01
└── [1.2K]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!