CVE-2022-27925

This PoC exploits CVE-2022-27925, a Zimbra RCE vulnerability, by uploading malicious ZIP files to trigger command execution. It checks for a successful shell by verifying the presence of a JSP webshell.

This repository contains a functional exploit for CVE-2022-27925, a path traversal vulnerability in Zimbra Collaboration Suite Network Edition. The exploit leverages an authentication bypass (CVE-2022-37042) to deploy a JSP webshell, achieving remote code execution as the Zimbra user.

This is a functional exploit for CVE-2022-27925, targeting Zimbra Collaboration Suite. It leverages a path traversal vulnerability to upload a malicious JSP file, achieving remote code execution (RCE) via a crafted ZIP archive.

This repository provides a detailed writeup and analysis of CVE-2022-27925, an unauthenticated RCE vulnerability in Zimbra Collaboration Server. It includes steps for enumeration, exploitation, and post-exploitation analysis, along with references to APT activities and malware found in compromised systems.

This repository contains a functional exploit for CVE-2022-27925, an unauthenticated remote code execution vulnerability in Zimbra. The exploit uploads a malicious ZIP file containing JSP webshells and reverse shells to vulnerable endpoints, leveraging path traversal to achieve execution.

The repository contains only a README.md file mentioning a Nuclei template for CVE-2022-27925, but no actual exploit code or template is provided. It appears to be a placeholder or incomplete submission.

This is a functional exploit for CVE-2022-27925, targeting Zimbra Collaboration Suite. It achieves unauthenticated remote code execution by uploading a malicious ZIP file containing JSP webshells and reverse shells via the mboximport endpoint.

This repository contains a working proof-of-concept exploit for CVE-2022-27925, a path-traversal vulnerability in Zimbra Collaboration Suite Network Edition. The exploit leverages an authentication bypass (CVE-2022-37042) to achieve unauthenticated remote code execution by uploading a malicious ZIP file to deploy a JSP webshell.

This is a functional exploit for CVE-2022-27925, targeting Zimbra Collaboration Suite. It achieves unauthenticated remote code execution by uploading a malicious ZIP file containing a JSP webshell, then interacting with it to execute arbitrary commands.

This PoC exploits CVE-2022-27925, a path traversal vulnerability in Zimbra Collaboration Suite, to upload a malicious JSP shell. The exploit crafts a ZIP file containing the shell and sends it via HTTP POST requests to vulnerable endpoints, then triggers the shell via a GET request.

This PoC exploits CVE-2022-27925, a Zimbra Collaboration Suite vulnerability allowing unauthenticated remote code execution via crafted ZIP uploads to the mboximport endpoint. The script automates the exploit by sending malicious ZIP payloads and checking for a successful shell.

This is a Python-based exploit for CVE-2022-27925, an unauthenticated remote code execution vulnerability in Zimbra. The script uploads malicious ZIP files to trigger command execution and checks for a successful shell at a predefined path.