CVE-2025-24893

This Metasploit module exploits a template injection vulnerability in XWiki Platform's SolrSearch macro, allowing remote code execution via Groovy script injection. It supports both Unix and Windows targets and includes version detection for vulnerable instances.

This exploit leverages a Groovy injection vulnerability in XWiki's SolrSearch endpoint to achieve remote code execution. The PoC sends a crafted request to execute arbitrary commands (e.g., `cat /etc/passwd`) without authentication.

This is a Python-based exploit for CVE-2025-24893, targeting XWiki versions prior to 15.10.11, 16.4.1, and 16.5.0RC1. It leverages a Groovy-based command injection vulnerability in the SolrSearch endpoint to achieve remote code execution (RCE).

This repository contains a functional Python-based exploit for CVE-2025-24893, an unauthenticated RCE vulnerability in XWiki. The exploit crafts a malicious Groovy payload delivered via a GET request to the SolrSearch endpoint, resulting in a reverse shell.

This is a functional exploit for CVE-2025-24893, an unauthenticated RCE in XWiki via Groovy code injection in the SolrSearch endpoint. The script sends a crafted HTTP GET request to execute arbitrary commands.

This PoC exploits CVE-2025-24893, a remote code execution (RCE) vulnerability in XWiki via a Groovy injection in the SolrSearch endpoint. The script constructs a malicious payload to execute arbitrary Groovy commands and verifies success by checking for a specific response marker.

This PoC exploits CVE-2025-24893, a remote code execution vulnerability in XWiki's Groovy macro when used with async rendering. It achieves command execution by injecting Groovy expressions via RSS-based search queries and retrieving output from crafted responses.

This is a functional exploit for CVE-2025-24893, targeting an RCE vulnerability in XWiki via a crafted Groovy payload injected through the SolrSearch API endpoint. The script automates protocol detection and payload delivery, confirming exploitation by checking for sensitive data in the response.

This repository contains a Python-based exploit for CVE-2025-24893, a remote code execution vulnerability in XWiki Platform. The exploit uses a Groovy-based async macro to deliver a configurable reverse shell payload via a crafted URL.

This PoC exploits CVE-2024-32019, a local privilege escalation vulnerability in Netdata's ndsudo due to an untrusted search path. The exploit manipulates the PATH environment variable to execute a malicious binary named 'nvme' with elevated privileges.

This repository contains a functional Python exploit for CVE-2025-24893, targeting an SSTI vulnerability in XWiki's SolrSearch endpoint via Groovy template injection. The exploit supports command execution, vulnerability testing, and an interactive shell.

This repository contains a functional Python-based exploit for CVE-2025-24893, targeting XWiki 15.10.10. The exploit leverages unsanitized Groovy code execution in the SolrSearch macro to achieve unauthenticated remote command execution.

This repository contains a functional PoC exploit for CVE-2025-24893, targeting XWiki's SolrSearch endpoint to achieve remote code execution via Groovy script injection. The exploit fetches and executes a remote script using curl, demonstrating arbitrary command execution on vulnerable XWiki instances.

This is a functional exploit for CVE-2025-24893, targeting XWiki Platform with a Groovy-based RCE via SolrSearch endpoint. It includes a reverse shell payload and reconnection logic for stability.

This repository contains functional exploit code for multiple CVEs, including authentication bypass vulnerabilities in TOTOLINK devices and a scanner for Fortinet SSL VPN (CVE-2024-21762). The PoCs demonstrate the vulnerabilities with clear technical details and functional code.

This repository contains a functional proof-of-concept exploit for CVE-2025-24893, an unauthenticated remote code execution vulnerability in XWiki's SolrSearch feature. The exploit leverages Groovy template injection to execute arbitrary commands or spawn a reverse shell.

This is a functional exploit for CVE-2025-24893, targeting XWiki Platform's SolrSearch endpoint to achieve remote code execution via Groovy script injection. The PoC sends a crafted payload to execute arbitrary commands and extracts the output from the response.

This repository contains a functional Proof of Concept (PoC) for CVE-2025-24893, an unauthenticated Remote Command Execution (RCE) vulnerability in XWiki. The exploit leverages server-side template injection via the SolrSearch endpoint to execute arbitrary commands on the target system.

This repository contains a functional Python-based exploit for CVE-2025-24893, an unauthenticated RCE vulnerability in XWiki's Groovy expression handling within the SolrSearch macro. The exploit supports both command execution and reverse shell establishment, with options for automatic listener setup.

This repository contains a functional exploit for CVE-2025-24893, demonstrating a Groovy-based remote code execution (RCE) vulnerability. The exploit leverages a crafted HTTP request to execute arbitrary commands via a Groovy payload, with base64-encoded command injection.

This PoC exploits a Groovy template injection vulnerability in XWiki, allowing arbitrary command execution via crafted payloads. The script sends commands to a vulnerable endpoint and processes the response to display output.

This is a functional proof-of-concept exploit for CVE-2025-24893, targeting an XWiki Groovy RCE vulnerability. It allows command execution or reverse shell establishment via a crafted payload.

This repository contains a functional Python exploit for CVE-2025-24893, an unauthenticated RCE vulnerability in XWiki via the SolrSearch endpoint. The exploit leverages Groovy code injection through improperly sanitized input in Freemarker templates.

This PoC exploits a Server-Side Template Injection (SSTI) vulnerability in XWiki, allowing remote command execution via Groovy code injection. It provides an interactive shell to execute commands on the target system.

This repository contains a functional exploit for CVE-2025-24893, an SSTI vulnerability in XWiki that allows unauthenticated RCE via the SolrSearch endpoint. The exploit uses a Groovy template injection payload to execute arbitrary commands.

This is a functional Python-based exploit for CVE-2025-24893, which leverages Groovy injection in XWiki's SolrSearch endpoint to achieve remote code execution. The script sends user-provided commands via a crafted payload and extracts the output from the response.

This PoC exploits a remote code execution vulnerability in XWiki by injecting a Groovy payload via the SolrSearch endpoint. It confirms vulnerability by executing a simple 'id' command and extracting the output.

This is a functional exploit for CVE-2025-24893, targeting unauthenticated RCE in XWiki via Groovy script injection in the SolrSearch RSS feed handler. It constructs a base64-encoded reverse shell payload and delivers it through a crafted GET request.

The repository contains a functional Python exploit for CVE-2025-24893, an unauthenticated RCE vulnerability in XWiki's SolrSearch macro. The exploit crafts a malicious Groovy payload and sends it via a GET request to execute arbitrary commands on the target system.

This repository contains a Python-based exploit for CVE-2025-24893, an unauthenticated Remote Code Execution (RCE) vulnerability in XWiki. The exploit leverages improper Groovy expression evaluation in the SolrSearch macro to execute arbitrary commands on the target system.

This exploit leverages a Groovy template injection vulnerability in XWiki's SolrSearch endpoint to achieve remote code execution. It sends a crafted payload via the 'text' parameter, which executes arbitrary commands on the target system.

This repository contains a Bash-based exploit for CVE-2025-24893, targeting an unauthenticated RCE vulnerability in XWiki Platform via Groovy code injection in the SolrSearch macro. The PoC demonstrates command execution and includes detailed technical documentation.

This repository contains a functional exploit for CVE-2025-24893, targeting XWiki Platform versions up to 15.10.10 via a SolrSearch template injection vulnerability leading to RCE. The exploit includes version detection, vulnerability validation, and command execution capabilities.

This repository contains a functional Python-based exploit for CVE-2025-24893, demonstrating a Server-Side Template Injection (SSTI) vulnerability in XWiki. The exploit leverages Groovy code execution via template macros to achieve remote command execution (RCE) on vulnerable instances.

This Python script exploits CVE-2025-24893, a Remote Code Execution vulnerability in XWiki up to version 15.10.10, by injecting a Base64-encoded reverse shell payload via a Groovy template in the URL. It requires a listener to be set up beforehand.

This exploit leverages a Groovy script injection vulnerability in XWiki's SolrSearch endpoint to achieve remote code execution (RCE). The payload is URL-encoded and injected via the 'text' parameter, allowing arbitrary command execution.

This is a functional Bash script PoC for CVE-2025-24893, exploiting an RCE vulnerability in XWiki Platform via Groovy code injection in the SolrSearch endpoint. It sends a reverse shell payload to a target URL using curl.

This is a functional PoC exploit for CVE-2025-24893, an unauthenticated RCE vulnerability in XWiki. It leverages Groovy code injection via the SolrSearch Macro to execute arbitrary commands on vulnerable XWiki instances.

This is a functional exploit for CVE-2025-24893, an unauthenticated RCE vulnerability in XWiki. It leverages a Groovy injection in the SolrSearch endpoint to execute arbitrary commands via a crafted RSS feed request.

This repository contains a functional proof-of-concept exploit for CVE-2025-24893, demonstrating remote code execution in XWiki via Groovy injection. The exploit uses a crafted payload to execute arbitrary commands on vulnerable XWiki instances.

This is a functional Rust-based PoC for CVE-2025-24893, exploiting an unauthenticated Groovy template injection in XWiki's SolrSearch endpoint to achieve remote code execution via a reverse shell payload.

This is a functional Python-based PoC for CVE-2025-24893, exploiting a Groovy injection vulnerability in XWiki Platform 15.10.10 via the SolrSearch endpoint. It allows unauthenticated remote code execution by injecting a Groovy payload through the RSS parameter.

This is a functional PoC exploit for CVE-2025-24893, targeting XWiki's SolrSearch endpoint to achieve RCE via Groovy macro injection. It sends a reverse shell payload using `busybox nc` to the attacker's specified IP and port.

This repository contains a functional Python-based exploit for CVE-2025-24893, demonstrating remote code execution (RCE) via Server-Side Template Injection (SSTI) in XWiki. The exploit leverages Groovy code injection through a crafted URL payload to execute arbitrary commands on the target system.

This is a functional PoC exploit for CVE-2025-24893, targeting an unauthenticated RCE vulnerability in XWiki. It leverages Groovy script injection via the SolrSearch endpoint to execute arbitrary shell commands.

The repository contains a functional exploit for CVE-2025-24893, targeting XWiki Platform versions >= 5.3-milestone-2 and <= 16.0.0-rc-1. The exploit leverages a Groovy-based injection via the SolrSearch endpoint to achieve remote code execution (RCE).

This Metasploit module exploits a template injection vulnerability in XWiki Platform's SolrSearch macro, allowing unauthenticated remote code execution via Groovy script injection. The exploit constructs a payload that executes arbitrary commands on Unix or Windows systems.