CVE-2025-49132

This script checks for CVE-2025-49132 in Pterodactyl Panel by exploiting a path traversal vulnerability to leak database credentials. It does not execute arbitrary code but confirms vulnerability by retrieving sensitive configuration data.

This repository contains a functional exploit for CVE-2025-49132, targeting Pterodactyl Panel ≤ 1.11.10. The exploit leverages an unauthenticated LFI vulnerability in the `/locales/locale.json` endpoint to achieve RCE via multiple methods, including `pearcmd.php` inclusion, PHP filter chains, and Laravel deserialization.

The PoC exploits a path traversal vulnerability in Pterodactyl's locale endpoint to read arbitrary PHP files, specifically targeting database credentials. It sends a crafted GET request to leak sensitive configuration data, demonstrating the vulnerability's impact.

This repository contains a functional Python exploit for CVE-2025-49132, an unauthenticated RCE vulnerability in Pterodactyl Panel. The exploit leverages LFI in the /locales/locale.json endpoint to interact with pearcmd.php, enabling arbitrary file creation and command execution.

This repository contains a functional SQL injection exploit for WordPress Quiz Maker (CVE-2025-10042), demonstrating time-based blind SQLi via crafted HTTP headers. The exploit includes data extraction capabilities for admin credentials and password hashes.

This repository contains functional exploit code for CVE-2025-49132, a directory traversal vulnerability in Pterodactyl Panel versions 1.9.0 to 1.11.10. The exploit allows unauthenticated remote code execution by manipulating the `locale` and `namespace` parameters to read arbitrary files and write malicious PHP payloads.

This repository contains a functional Python-based exploit for CVE-2025-49132, demonstrating remote command execution (RCE) via a crafted HTTP request to a vulnerable endpoint. The exploit leverages file creation and execution through path traversal and PHP payload injection.

This repository contains a functional exploit PoC for CVE-2025-49132, a path traversal vulnerability in Pterodactyl Panel. The script checks for the vulnerability by sending a crafted request to '/locales/locale.json' with path traversal sequences to access sensitive configuration files.

The repository contains a functional Python exploit for CVE-2025-49132, an unauthenticated RCE vulnerability in Pterodactyl Panel <= 1.11.10. The exploit leverages directory traversal and improper input validation in the `/locales/locale.json` endpoint to write and execute arbitrary PHP payloads.

This repository contains a functional Python-based PoC for CVE-2025-49132, an unauthenticated RCE vulnerability in Pterodactyl Panel. The script demonstrates path traversal via the `/locales/locale.json` endpoint to achieve RCE and credential dumping.

This repository contains a functional Python exploit for CVE-2025-49132, targeting Pterodactyl Panel. The exploit automates the discovery of exposed configuration files, extracts MySQL credentials, and creates an admin user by leveraging a path traversal vulnerability.

This repository contains a functional exploit for CVE-2025-49132, which leverages a file inclusion vulnerability in Pterodactyl Panel to achieve Remote Code Execution (RCE) via the `pearcmd.php` script. The PoC uses curl commands to inject malicious PHP code into a temporary file and then includes it to execute arbitrary commands.

This repository contains a functional exploit for CVE-2025-49132, targeting Pterodactyl Panel < v1.11.11. The exploit chains path traversal with PEAR command injection to achieve unauthenticated remote code execution.

This repository contains a functional Python-based exploit for CVE-2025-49132, targeting an unauthenticated RCE vulnerability in Pterodactyl Panel via PHP PEAR's `pearcmd.php`. The exploit leverages path traversal and PEAR's `config-create` command to write and execute arbitrary PHP payloads.

This repository contains a functional Python-based exploit for CVE-2025-49132, targeting an unauthenticated RCE vulnerability in Pterodactyl Panel via PHP PEAR's `pearcmd.php` functionality. The exploit leverages path traversal and PEAR's `config-create` command to write and execute arbitrary PHP code.

This repository contains a functional Python-based exploit for CVE-2025-49132, targeting Pterodactyl Panel versions prior to 1.11.11. The exploit leverages insufficient input validation to achieve remote code execution via a crafted HTTP request that writes and executes a malicious PHP payload.

This repository contains a functional Python-based exploit for CVE-2025-49132, which leverages a path traversal vulnerability to create a webshell and achieve remote code execution (RCE) via a reverse shell. The exploit uses curl commands to deliver payloads that write and decode a PHP webshell, then triggers a reverse shell connection.

This is a detailed technical writeup for HackTheBox's Pterodactyl machine, covering an attack chain involving CVE-2025-49132 (unauthenticated LFI-to-RCE in Pterodactyl Panel), credential extraction, and a privilege escalation chain using CVE-2025-6018 and CVE-2025-6019.

This is a detailed technical writeup of an attack chain involving CVE-2025-49132 (LFI in Pterodactyl Panel) and subsequent privilege escalation via CVE-2025-6018 and CVE-2025-6019. It includes root cause analysis, exploit steps, and remediation guidance.

This is a detailed technical writeup of an attack chain against HackTheBox's Pterodactyl machine, including CVE-2025-49132 (LFI), RCE via PEAR, and privilege escalation via PAM bypass and udisks2 race condition.

The repository contains a Python script that scans for CVE-2025-49132, an unauthenticated information disclosure vulnerability in Pterodactyl Panel. It checks for exposed database credentials via a path traversal attack but does not include exploit code for RCE.

The repository contains a Python script that scans for CVE-2025-49132, an unauthenticated information disclosure vulnerability in Pterodactyl Panel. It checks for exposed database credentials via a path traversal attack but does not include exploit code for RCE.

The PoC demonstrates an unauthenticated remote code execution (RCE) vulnerability in Pterodactyl Panel via the /locales/locale.json endpoint by manipulating the locale and namespace parameters to write and execute arbitrary PHP code. The exploit uses curl commands to deliver the payload and trigger execution.

The repository contains functional exploit code for multiple CVEs, including CVE-2025-49132, demonstrating authentication bypass and remote code execution vulnerabilities. The exploits are written in Bash and Python, targeting specific software versions with clear technical details.

This repository contains a functional exploit for CVE-2025-49132, an unauthenticated Local File Inclusion (LFI) vulnerability in Pterodactyl Panel that can be escalated to Remote Code Execution (RCE) via PHP's `pearcmd.php`. The exploit includes both LFI and RCE modes with interactive shell capabilities.

This repository contains a functional exploit for CVE-2025-49132, targeting Pterodactyl Panel < v1.11.11. The exploit chains path traversal with PEAR command injection to achieve unauthenticated remote code execution.

This repository contains a functional exploit for CVE-2025-49132, an unauthenticated RCE vulnerability in Pterodactyl Panel via PHP PEAR method abuse. The exploit leverages path traversal and PEAR's config-create command to write and execute arbitrary PHP code.

This repository contains a functional exploit for CVE-2025-49132, an unauthenticated RCE vulnerability in Pterodactyl Panel. The exploit leverages path traversal and PHP PEAR's `pearcmd.php` to write and execute arbitrary PHP code.

This repository contains a functional Python exploit for CVE-2025-49132, which leverages a file write vulnerability in the Pterodactyl Panel's locale.json endpoint to achieve unauthenticated remote code execution (RCE). The exploit writes a malicious PHP payload to a writable directory and then triggers its execution via a secondary request.

The repository contains a functional exploit for CVE-2025-49132, targeting a remote code execution vulnerability in the Pterodactyl Panel due to improper input validation in locale handling. The exploit automates the discovery of PEAR paths and crafts malicious requests to achieve RCE.

This script exploits an unauthenticated Local File Inclusion (LFI) vulnerability in Pterodactyl Panel to achieve Remote Code Execution (RCE) via the 'pearcmd' feature. It writes a malicious PHP file to the target system and executes arbitrary commands.

This repository contains a functional PoC for CVE-2025-49132, an unauthenticated RCE vulnerability in Pterodactyl Panel <= 1.11.10. The exploit leverages unsanitized `locale` and `namespace` parameters to trigger arbitrary file inclusion and execution via Laravel's translation loader.

The repository contains a functional exploit for CVE-2025-49132, targeting Pterodactyl's arbitrary file read vulnerability via path traversal in the `locales/locale.json` endpoint. It extracts database credentials and other sensitive configuration details by manipulating the `locale` and `namespace` parameters.

This repository contains a scanner tool designed to detect and extract database configuration information from Pterodactyl Panel instances by exploiting a path traversal vulnerability in the `/locales/locale.json` endpoint. It supports multiple execution modes (single-threaded, multi-threaded, and async) and includes features like proxy support, error retries, and result categorization.

The repository contains a Python-based scanner for CVE-2025-49132, which targets a path traversal vulnerability in a web application to leak database and app configuration files. It does not include exploit code for achieving RCE or other offensive actions, only detection and information leakage.

This repository contains functional exploit code for CVE-2025-49132, which targets a path traversal vulnerability in Pterodactyl Panel. The PoC includes scripts to forge Laravel session cookies and decrypt them, enabling unauthorized API access.

The repository claims to provide an exploit for CVE-2026-1844 but lacks any technical details or exploit code, instead directing users to an external download link via a URL shortener.

This repository contains a functional proof-of-concept exploit for CVE-2025-49132, an unauthenticated remote code execution vulnerability in Pterodactyl Panel versions prior to 1.11.11. The exploit leverages path traversal and PHP PEAR's `pearcmd.php` functionality to write and execute arbitrary PHP code on the target system.

This repository contains a functional Python exploit for CVE-2025-49132, an unauthenticated RCE vulnerability in Pterodactyl Panel. The exploit leverages LFI in the /locales/locale.json endpoint to interact with pearcmd.php, enabling arbitrary file creation and command execution.

This repository contains a functional Python exploit for CVE-2025-49132, targeting Pterodactyl Panel. The exploit automates the discovery of exposed configuration files, extracts MySQL credentials, and creates an admin user by leveraging a path traversal vulnerability.