CVE-2025-63848 PoC — SWI-Prolog SWISH 安全漏洞

Source

https://github.com/coderMohammed1/CVE-2025-63848

Associated Vulnerability

Title:SWI-Prolog SWISH 安全漏洞 (CVE-2025-63848)
Description:SWI-Prolog SWISH是SWI-Prolog组织的一个Web集成开发环境。 SWI-Prolog SWISH 2.2.0及之前版本存在安全漏洞，该漏洞源于存储型跨站脚本，可能导致执行任意代码。

Description

swish-prolog cve

Readme

# CVE-2025-63848
swish-prolog cve

Stored cross site scripting (xss) vulnerability in SWISH prolog thru 2.2.0 allowing attackers to execute arbitrary code via crafted web IDE notebook.

---
 # Impact
 
 One click Account takeover.
 
---
# Mitigation

Upgrade to the latest version to mitigate the ATO.

https://github.com/SWI-Prolog/swish/commit/4fb6acb97bedf993ec406a2ef324eeb2a16c49e3

File Snapshot


 [4.0K]  /data/pocs/f929d61aa396dcbba3fd00bd7e27fde03007da48
└── [ 387]  README.md

1 directory, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!