CVE-2025-44177 PoC — White Star Software Protop 安全漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2025/CVE-2025-44177.yaml

Associated Vulnerability

Title:White Star Software Protop 安全漏洞 (CVE-2025-44177)
Description:White Star Software Protop是美国White Star Software公司的一个监控工具。 White Star Software Protop 4.4.2-2024-11-27版本存在安全漏洞，该漏洞源于/pt3upd/端点存在目录遍历，可能导致任意文件读取。

Description

A directory traversal vulnerability was discovered in White Star Software Protop version 4.4.2-2024-11-27, specifically in the /pt3upd/ endpoint. An unauthenticated attacker can remotely read arbitrary files on the underlying OS using encoded traversal sequences.

File Snapshot


 id: CVE-2025-44177

info:
  name: White Star Software ProTop - Directory Traversal
  author: s-cu-bo

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!