关联漏洞
描述
Wing FTP Server RCE via Lua Injection
介绍
# CVE-2025-47812 – Wing FTP Server RCE via Lua Injection
**Author:** [0xgh057r3c0n](https://github.com/0xgh057r3c0n)
---
## 🧠 Description
This exploit leverages a Lua injection vulnerability in **Wing FTP Server**'s login handler (`loginok.html`) to execute arbitrary operating system commands or gain a reverse shell. It abuses unsanitized Lua code execution through the `username` parameter.
---
## 📦 Requirements
- Python 3.6 or higher
- `pip3`
### Python Packages
Install the required packages with:
```bash
pip3 install -r requirements.txt
````
Or manually:
```bash
pip3 install requests colorama
```
---
## 🛠️ Installation
```bash
git clone https://github.com/0xgh057r3c0n/CVE-2025-47812.git
cd CVE-2025-47812
python3 CVE-2025-47812.py
```
---
## 🚀 Usage
Run the script:
```bash
python3 CVE-2025-47812.py
```
### Options:
* **Option 1:** Execute a system command (e.g., `whoami`, `id`)
* **Option 2:** Launch a reverse shell (multiple payload options included)
---
## 💡 Example
```text
Target URL (e.g., http://localhost:5466): http://192.168.1.100:5466
Username (e.g., anonymous): anonymous
Your choice (1 or 2): 1
Command to execute (default: whoami): whoami
```
---
## ⚠️ Legal Disclaimer
This tool is provided for **educational and authorized security testing purposes only**.
You are responsible for your actions. Use only on systems you own or are authorized to test.
---
## 📄 License
This project is licensed under the MIT License. See the [LICENSE](LICENSE) file for details.
文件快照
[4.0K] /data/pocs/0b08d55cde8f6e04b166e03196f0bb3afee71cd7
├── [5.4K] CVE-2025-47812.py
├── [1.1K] LICENSE
└── [1.5K] README.md
0 directories, 3 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。