CVE-2025-27590 PoC — Oxidized Web 路径遍历漏洞

Source

https://github.com/fatkz/CVE-2025-27590

Associated Vulnerability

Title:Oxidized Web 路径遍历漏洞 (CVE-2025-27590)
Description:Oxidized Web是ytti个人开发者的用于 Oxidized 的 Web UI + RESTful API。 Oxidized Web 0.15.0之前版本存在安全漏洞，该漏洞源于RANCID迁移页面允许未经验证的用户控制运行oxidized-web的Linux用户账户。

Readme

# CVE-2025-27590 - PoC Exploit (Command Injection via Multipart Form Upload)

## 📌 Description

This is a Proof-of-Concept (PoC) exploit for **CVE-2025-27590**, a command injection vulnerability affecting web applications that process multipart file uploads without proper sanitization. The vulnerability allows remote attackers to execute arbitrary shell commands by crafting malicious form-data payloads.

---

## 🧠 Vulnerability Summary

- **Type**: Command Injection
- **Vector**: HTTP `multipart/form-data`
- **Affected Parameter**: `cloginrc` and `file1` form parts
- **Impact**: Arbitrary shell command execution, including SSH key injection

---

## 🚀 Usage

python3 exploit_cve_2025_27590.py -u <TARGET_IP_OR_DOMAIN> -p <PORT> -l <PATH_TO_WRITE>


python3 exploit_cve_2025_27590.py -u 172.20.221.195 -p 8888 -l /home/oxidized/.bashrc

File Snapshot


 [4.0K]  /data/pocs/20a5c36bfdc755b6dc6d71b6478c122f0f8f9621
├── [1.7K]  exploit.py
└── [ 853]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!