CVE-2025-30065

This PoC demonstrates CVE-2025-30065, a deserialization vulnerability in Apache Parquet <1.15.0. It generates a malicious Parquet file containing a serialized Java object that executes a benign command (whoami) upon deserialization.

This repository contains a working PoC exploit for CVE-2025-30065, which leverages a vulnerability in the `parquet-avro` module to achieve remote code execution (RCE) via arbitrary Java class constructor invocation. The exploit generates a malicious Parquet file that, when processed, triggers a callback to a specified URL using `javax.swing.JEditorPane`.

This repository contains a functional PoC for CVE-2025-30065, demonstrating an RCE vulnerability in Apache Parquet's Avro schema handling via crafted default values. The exploit leverages standard Java classes (e.g., javax.swing.JEditorPane) to trigger unintended instantiation during deserialization.

This repository contains a proof-of-concept exploit for CVE-2025-30065, demonstrating remote class instantiation and SSRF via malicious Parquet files. It includes payloads for RCE and SSRF, leveraging Avro schema manipulation to trigger arbitrary class instantiation.

This repository contains a Flask-based simulation of CVE-2025-30065, a critical RCE vulnerability in Apache Parquet. It demonstrates exploit phases including reconnaissance, exploitation, privilege escalation, and data exfiltration in a controlled, educational environment.

This PoC demonstrates a deserialization vulnerability in Apache Parquet (CVE-2025-30065) by embedding a malicious serialized object in a Parquet file. The exploit triggers arbitrary command execution upon deserialization of the payload.