Home

Description

Evoluted PHP Directory Listing Script through 4.0.5 contains a reflected cross-site scripting vulnerability in index.php where the dir parameter value is reflected without HTML encoding inside the HTML title element and inside anchor href attributes in the breadcrumb navigation. Attackers can inject arbitrary JavaScript via crafted dir parameter values by breaking out of the title context or injecting event handlers into breadcrumb anchor attributes to execute malicious scripts in a victim's browser.

PUBLISHED Reserved 2026-02-02 | Published 2026-06-09 | Updated 2026-06-10 | Assigner VulnCheck




MEDIUM: 5.1CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

MEDIUM: 5.4CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

Problem types

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Product status

Default status
affected

Any version
affected

Credits

philopentest finder

VulnCheck finder

References

gist.github.com/...inforepo/d62cf53ef42ff703ca67792d49bf6780 technical-description exploit

www.evoluted.net/...development/php-directory-listing-script product

www.vulncheck.com/...-script-reflected-xss-via-dir-parameter third-party-advisory

cve.org (CVE-2026-25557)

nvd.nist.gov (CVE-2026-25557)

Download JSON