Description
Dalfox is a powerful open-source XSS scanner and utility focused on automation. Prior to 2.13.0, when dalfox is run in REST API server mode, the custom-payload-file field in model.Options is JSON-tagged and deserialized directly from the attacker's request body, then propagated unchanged through dalfox.Initialize into the scan engine. The engine passes the value to voltFile.ReadLinesOrLiteral, which reads lines from any file path accessible to the dalfox process and embeds each line as an XSS payload in outbound HTTP requests directed at the attacker-controlled target URL. Because the server has no API key by default, an unauthenticated network attacker can exfiltrate the contents of arbitrary files on the dalfox host by reading them line-by-line through scan traffic. This vulnerability is fixed in 2.13.0.
Published: 2026-05-27
Score: 7.5 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Dalfox, an XSS scanner, allows unauthenticated attackers to read arbitrary files on the host via the custom‑payload‑file parameter when running in REST API server mode. The parameter is deserialized directly from the request body and passed to voltFile.ReadLinesOrLiteral, which reads any file accessible to the Dalfox process. Each line of the file is embedded as an XSS payload in outbound HTTP requests to an attacker‑controlled target, enabling out‑of‑band exfiltration of the file contents.

Affected Systems

All installations of the hahwul Dalfox utility prior to version 2.13.0 that are configured to run in server mode without an API key are vulnerable. The problem exists in the custom‑payload‑file field of the model.Options structure, which is exposed via the REST API.

Risk and Exploitability

The CVSS score of 7.5 indicates a high severity vulnerability. Because the attack requires only unauthenticated network access to the API endpoint and no special privileges, the EPSS score is not available but the risk remains significant. The vulnerability is not listed in CISA's KEV catalog, yet it allows direct read of any file that the Dalfox process can access, making it a serious confidentiality threat. The likely attack path is through an HTTP POST or similar request supplying a malicious custom‑payload‑file value while the server is running without an API key.

Generated by OpenCVE AI on May 27, 2026 at 21:01 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Dalfox to version 2.13.0 or later, which removes the vulnerable code path.
  • If upgrade is not possible, disable the REST API server mode or protect the endpoint with an API key to enforce authentication (addressing CWE‑306).
  • As an interim workaround, reconfigure or remove the custom‑payload‑file field from the API payload handling or validate its value against a whitelist to prevent arbitrary file reads (reducing CWE‑552 and CWE‑73 effects).

Generated by OpenCVE AI on May 27, 2026 at 21:01 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-35wr-x7v6-9fv2 Dalfox Server Mode has an Unauthenticated Arbitrary File Read with Out-of-Band Exfiltration via `custom-payload-file`
History

Wed, 27 May 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 27 May 2026 17:45:00 +0000

Type Values Removed Values Added
Description Dalfox is a powerful open-source XSS scanner and utility focused on automation. Prior to 2.13.0, when dalfox is run in REST API server mode, the custom-payload-file field in model.Options is JSON-tagged and deserialized directly from the attacker's request body, then propagated unchanged through dalfox.Initialize into the scan engine. The engine passes the value to voltFile.ReadLinesOrLiteral, which reads lines from any file path accessible to the dalfox process and embeds each line as an XSS payload in outbound HTTP requests directed at the attacker-controlled target URL. Because the server has no API key by default, an unauthenticated network attacker can exfiltrate the contents of arbitrary files on the dalfox host by reading them line-by-line through scan traffic. This vulnerability is fixed in 2.13.0.
Title Dalfox: Unauthenticated Arbitrary File Read with Out-of-Band Exfiltration via `custom-payload-file` in Dalfox Server Mode
Weaknesses CWE-306
CWE-552
CWE-73
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-27T18:00:56.222Z

Reserved: 2026-05-08T19:27:26.697Z

Link: CVE-2026-45088

cve-icon Vulnrichment

Updated: 2026-05-27T17:56:11.351Z

cve-icon NVD

Status : Deferred

Published: 2026-05-27T18:16:24.727

Modified: 2026-05-27T19:49:48.143

Link: CVE-2026-45088

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T21:15:25Z

Weaknesses