CVE-2025-31125

The repository contains detailed technical writeups for multiple CVEs, including command injection, XXE, SQLi, and RCE vulnerabilities. Each writeup includes vulnerability overviews, proof-of-concept details, and mitigation recommendations.

This is a Python-based vulnerability scanner for CVE-2025-31125 that checks for exposed file system paths via specific URLs. It supports single and batch target scanning, with results saved to files.

This PoC exploits CVE-2025-31125, a path traversal vulnerability in Vite's WASM import handling, to retrieve sensitive files like `/etc/passwd` from vulnerable servers. It sends crafted requests to extract and decode base64-encoded WASM content.

This is a functional exploit for CVE-2025-31125, a path traversal vulnerability in the Vite development server's @fs endpoint. It crafts URLs to access sensitive files like /etc/passwd and /etc/hosts, decoding base64 responses to retrieve file contents.

This PoC exploits a path traversal vulnerability (CVE-2025-31125) in Vite Development Server's @fs endpoint to access sensitive files like /etc/passwd and /etc/hosts via crafted URLs. It sends HTTP requests to the target, checks for base64-encoded responses, and decodes the data.