MEDIUMCVE-2025-58053

CVE-2025-58053: Privilege Escalation in Galette

Q: What is CVE-2025-58053 — Privilege Escalation in Galette?

CVE-2025-58053 is a vulnerability in Galette versions prior to 1.2.0 that allows an attacker to gain higher privileges by forging a POST request during account updates.

Q: Am I affected by CVE-2025-58053 in Galette?

You are affected if you are running Galette version 1.2.0 or earlier. Upgrade to version 1.2.0 to mitigate the risk.

Q: How do I fix CVE-2025-58053 in Galette?

Upgrade Galette to version 1.2.0 or later. Implement stricter input validation on account update forms as an interim measure.

Q: Is CVE-2025-58053 being actively exploited?

There are currently no confirmed reports of active exploitation, but the vulnerability is publicly known.

Q: Where can I find the official Galette advisory for CVE-2025-58053?

Refer to the Galette project's official security advisories and release notes for details: [https://galette.org/](https://galette.org/)

Platform

php

Component

galette/galette

Fixed in

1.2.1

AI Confidence: highNVDEPSS 0.1%Reviewed: May 2026

View on NVD

Save

CVE-2025-58053 describes a Privilege Escalation vulnerability affecting Galette, a membership management web application. This flaw allows an attacker to elevate their privileges within the system by crafting a malicious POST request during account updates, potentially leading to unauthorized access and control. The vulnerability impacts Galette versions prior to 1.2.0, and a patch is available in version 1.2.0.

Impact and Attack Scenarios

The impact of this vulnerability is significant, as it allows an attacker to bypass standard access controls and gain elevated privileges. An attacker could potentially modify user data, create new accounts with administrative rights, or even take complete control of the Galette application. This could compromise the confidentiality, integrity, and availability of sensitive membership data and disrupt the organization's operations. The ability to forge POST requests to update accounts represents a critical weakness in the application's authentication and authorization mechanisms.

Exploitation Context

This vulnerability was publicly disclosed on 2025-12-19. No public proof-of-concept (PoC) code has been identified at the time of writing. The vulnerability is not currently listed on the CISA KEV catalog. The ease of exploitation likely depends on the attacker's ability to craft a valid POST request and bypass any existing input validation measures.

Threat Intelligence

Exploit Status

Proof of ConceptUnknown

CISA KEVNO

EPSS

0.07% (20% percentile)

CISA SSVC

Exploitationnone

Automatableno

Technical Impactpartial

Affected Software

Componentgalette/galette

Vendorgalette

Affected rangeFixed in

< 1.2.0 – < 1.2.01.2.1

Weakness Classification (CWE)

CWE-269

Timeline

Reserved2025-08-22
Published2025-12-19
EPSS updated2026-03-23

Mitigation and Workarounds

The primary mitigation for CVE-2025-58053 is to upgrade Galette to version 1.2.0 or later, which includes the necessary fix. If upgrading immediately is not feasible, consider implementing stricter input validation on account update forms to prevent the injection of malicious data. Additionally, review and restrict access permissions for user accounts to limit the potential damage from a successful exploit. Regularly monitor Galette logs for suspicious activity, particularly POST requests related to account updates.

How to fix

Actualice Galette a la versión 1.2.0 o superior. Esta versión corrige la vulnerabilidad de escalada de privilegios. La actualización se puede realizar a través del panel de administración de Galette o descargando la nueva versión del sitio web oficial y reemplazando los archivos.

CVE Security Newsletter

Vulnerability analysis and critical alerts directly to your inbox.

Frequently asked questions

What is CVE-2025-58053 — Privilege Escalation in Galette?