Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-25037 PoC — Aquatronica Controller System 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2025/CVE-2025-25037.yaml
Associated Vulnerability
Title:Aquatronica Controller System 安全漏洞 (CVE-2025-25037)
Description:Aquatronica Controller System是意大利Aquatronica公司的一款为水族爱好者设计的综合性电子控制平台。 Aquatronica Controller System存在安全漏洞,该漏洞源于tcp.php端点未限制未经验证的访问,可能导致信息泄露。以下版本受到影响:Aquatronica Controller System firmware 5.1.6及之前版本和web interface 2.0及之前版本。
Description
Aquatronica Controller System firmware 5.1.6 and earlier and web interface 2.0 and earlier contain an information disclosure vulnerability caused by unauthenticated access to tcp.php endpoint, letting remote attackers retrieve sensitive configuration data including plaintext credentials, exploit requires no authentication.
File Snapshot

 id: CVE-2025-25037

info:
  name: Aquatronica Controller System <= 5.1.6 - Information Disclosure
  

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.