CVE-2025-70886 PoC — Halo 安全漏洞

Source

https://github.com/HowieHz/CVE-2025-70886

Associated Vulnerability

Title:Halo 安全漏洞 (CVE-2025-70886)
Description:Halo是Halo开源的一个强大易用的开源建站工具。 halo 2.22.4及之前版本存在安全漏洞，该漏洞源于公开评论提交端点存在缺陷，可能导致远程攻击者通过特制有效载荷触发拒绝服务。

Description

A Proof of Concept (PoC) exploit for CVE-2025-70886, a persistent denial-of-service vulnerability in Halo CMS (v2.22.4 and earlier) that allows remote attackers to crash the admin comment interface by submitting malformed payloads.

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.