POC详情: 89c8c8833ebfb1b359527a4b796a49b586a661ae

来源
https://github.com/typicalsmc/CVE-2025-49132-PoC
关联漏洞
标题: Pterodactyl Panel 代码注入漏洞 (CVE-2025-49132)
描述:Pterodactyl Panel是Pterodactyl开源的一个免费的开源游戏服务器管理面板。 Pterodactyl Panel 1.11.11之前版本存在代码注入漏洞,该漏洞源于/locales/locale.json端点未验证locale和namespace参数,可能导致任意代码执行。
介绍
## Guide to use script that exploit the [Pterodactyl Path Traversal at locale.json](https://github.com/pterodactyl/panel/security/advisories/GHSA-24wv-6c99-f843)

### Requirements

- Exposed Redis Server
- Panel URL

### Guide

1. Get access to the server configuration file, which has APP_KEY and Redis Database Password + IP
2. Use `forge_cookie` to generate a `pterodactyl_session` cookie
3. Use that cookie to access Pterodactyl API

### Note

- This script is for educational purposes only. Use it responsibly and ensure you have permission to test the target system.
- Logging in through the panel webpanel can not be done due to requirement of "remember_token" which is stored in the SQL Database.
- Only accessing the API is possible with the forged cookie.
- Tried on panel.ahihimc.net but they patched the redis port before im able to report joy :sad:
文件快照

 [4.0K]  /data/pocs/89c8c8833ebfb1b359527a4b796a49b586a661ae
├── [2.2K]  forge_cookie.py
├── [1.3K]  illuminate-decryptor.py
├── [1.1K]  LICENSE
└── [ 862]  README.md

0 directories, 4 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。