CVE-2025-1316 PoC — Edimax IC-7100 操作系统命令注入漏洞

Source

https://github.com/slockit/CVE-2025-1316

Associated Vulnerability

Title:Edimax IC-7100 操作系统命令注入漏洞 (CVE-2025-1316)
Description:Edimax IC-7100是中国讯舟（Edimax）公司的一款安全摄像头。 Edimax IC-7100 IP Camera存在操作系统命令注入漏洞，该漏洞源于未正确中和请求，可能导致远程代码执行。

Description

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)

Readme

# CVE-2025-1316
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)

# Description
Edimax IC-7100 does not properly neutralize requests. An attacker can create specially crafted requests to achieve remote code execution on the device

## Install
```
git clone https://github.com/slockit/CVE-2025-1316.git
cd CVE-2025-1316
sudo chmod +x install.sh
./install.sh
```

## Run
```
./main {HTTPS://EXAMPLE.COM/}
```

File Snapshot


 [4.0K]  /data/pocs/454bc39447f3a4e5e4ea192f2654c06be8f8e2ad
├── [2.0K]  install.sh
├── [2.0M]  main
└── [ 458]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!