CVE-2025-49113

This Metasploit module exploits a PHP object deserialization vulnerability in Roundcube Webmail (CVE-2025-49113) to achieve remote code execution. It authenticates as a user, uploads a malicious payload via a crafted `_from` parameter, and executes arbitrary commands as the web server.

This repository contains a functional PHP exploit for CVE-2025-49113, targeting Roundcube ≤ 1.6.10 via post-authentication PHP object deserialization to achieve remote code execution. The PoC includes authentication, CSRF token handling, payload injection, and execution steps.

This repository contains a functional exploit for CVE-2025-49113, targeting Roundcube Webmail. The exploit leverages a deserialization vulnerability in the Crypt_GPG_Engine class to achieve remote code execution (RCE) by uploading a malicious serialized payload.

The repository contains detailed technical writeups for multiple CVEs, including CVE-2025-49113, with root cause analysis, exploit details, and mitigation recommendations. It does not include functional exploit code but provides in-depth vulnerability research.

This repository contains a functional Python exploit for CVE-2025-49113, targeting Roundcube Webmail versions ≤1.5.9 and ≤1.6.10. The exploit leverages PHP object injection via a malicious serialized payload in the `Crypt_GPG_Engine` class to achieve remote code execution post-authentication.

This repository contains a functional exploit for CVE-2025-49113, leveraging insecure deserialization in Roundcube's session parser to achieve remote code execution. The exploit includes a PHP gadget generator and a Python script to authenticate, check version vulnerability, and execute arbitrary commands.

This repository contains a Nuclei template for detecting vulnerable Roundcube instances by checking the version number in the HTML response. It does not exploit the vulnerability but scans for affected versions.

This repository contains a functional Python exploit for CVE-2025-49113, a critical RCE vulnerability in Roundcube Webmail due to insecure PHP object deserialization in the `upload.php` script. The exploit authenticates, crafts a malicious serialized payload, and delivers it via a multipart form upload to achieve remote code execution.

This repository contains a functional PHP exploit for CVE-2025-49113, a PHP Object Deserialization vulnerability in Roundcube Webmail. The exploit leverages a crafted serialized object to write arbitrary files on the target server via the /settings/upload.php endpoint.

This repository contains a Nuclei template for detecting CVE-2025-49113, a PHP object deserialization vulnerability in Roundcube Webmail. The template checks for vulnerable versions and confirms the presence of Roundcube but does not include exploit code.

The repository contains a scanner for CVE-2024-21762, a Fortinet SSL VPN vulnerability, which checks if a target is vulnerable by sending crafted HTTP requests. It also includes documentation for other CVEs like CVE-2024-10654 (TOTOLINK authentication bypass).

This repository contains a functional exploit for CVE-2025-49113, targeting Roundcube Webmail via PHP object deserialization to achieve remote code execution (RCE). The exploit follows a multi-step process including CSRF token retrieval, authentication, and payload delivery to write a webshell.

This repository contains a functional exploit for CVE-2025-49113, targeting an insecure deserialization vulnerability in Roundcube Webmail. The exploit leverages a crafted file upload with a malicious serialized PHP object to achieve remote code execution.

This repository contains a functional Python exploit for CVE-2025-49113, targeting a PHP object deserialization vulnerability in Roundcube Webmail. The exploit automates authentication, session management, and payload delivery to achieve remote code execution via GPG configuration injection.

This repository contains a functional exploit for CVE-2025-49113, targeting Roundcube Webmail's deserialization vulnerability via the `_from` parameter. The exploit supports uploading a malicious PHAR payload and triggering its execution through a crafted request.

This repository contains a functional exploit for CVE-2025-49113, a PHP object deserialization vulnerability in Roundcube Webmail ≤ 1.6.10. The exploit authenticates to Roundcube, crafts a malicious serialized payload in the filename of an uploaded attachment, and achieves remote code execution via the `Crypt_GPG_Engine` gadget chain.

This repository contains a functional Python exploit for CVE-2025-49113, a post-authentication RCE vulnerability in Roundcube Webmail. The exploit leverages PHP object deserialization via crafted session variables injected through the settings upload endpoint, triggering command execution during session cleanup on logout.

This repository contains a functional exploit for CVE-2025-49113, targeting a post-authentication RCE vulnerability in Roundcube. The exploit chain involves CSRF token retrieval, authentication, payload construction via serialized object injection, file upload, and trigger execution via logout.

This repository provides a detailed walkthrough of exploiting CVE-2025-49113, a PHP object deserialization vulnerability in Roundcube Webmail, leading to remote code execution. It includes step-by-step instructions using Metasploit and Nmap for service discovery.

The repository claims to document a critical RCE vulnerability in Roundcube Webmail but provides no technical details or exploit code, instead directing users to an external PDF. This is a common tactic for luring researchers into downloading potentially malicious content.

The repository contains only a minimal README with a CVE title and brief description, lacking any exploit code, technical details, or proof-of-concept implementation. It appears to be a placeholder without substantive content.

This repository contains a functional Python exploit for CVE-2025-49113, targeting Roundcube Webmail versions before 1.5.10 and 1.6.x before 1.6.11. The exploit leverages PHP object deserialization via the `_from` parameter in `upload.php` to achieve remote code execution (RCE) by authenticated users.

This repository contains a functional PHP exploit for CVE-2025-49113, targeting Roundcube Webmail versions 1.5.0 through 1.6.10. The exploit leverages a deserialization vulnerability to achieve remote code execution by uploading a malicious gadget via an image upload feature.

This repository provides a detailed technical writeup for CVE-2025-49113, an authenticated remote code execution vulnerability in Roundcube 1.6.10. It includes lab setup instructions, exploit usage, and mitigation steps, but does not contain actual exploit code.

This repository provides a containerized lab environment to simulate and exploit CVE-2025-49113, a post-authentication RCE vulnerability in Roundcube Webmail caused by PHP object deserialization. It includes a vulnerable Roundcube instance and instructions for exploitation.

This repository contains a functional exploit for CVE-2025-49113, a post-authentication RCE vulnerability in Roundcube ≤ 1.6.10 via PHP object deserialization. The PoC includes authentication, CSRF token handling, payload injection, and execution steps.

This repository provides a detailed technical analysis of CVE-2025-49113, a post-authentication RCE vulnerability in Roundcube Webmail. It includes a timeline, root cause analysis, mitigation steps, and a step-by-step exploit walkthrough using a referenced PoC.

This repository contains a functional Python exploit for CVE-2025-49113, targeting Roundcube Webmail <= 1.6.10 via PHP object deserialization. The exploit includes authentication, file upload, and shell execution capabilities.

This Metasploit module exploits a PHP object deserialization vulnerability in Roundcube Webmail (CVE-2025-49113) to achieve remote code execution. It authenticates, uploads a malicious payload via a crafted `_from` parameter, and executes arbitrary commands as the web server user.