CVE-2025-50286

This exploit demonstrates an authenticated RCE vulnerability in Grav CMS 1.7.48 via the Direct Install feature, allowing an admin to upload a malicious plugin containing arbitrary PHP code. The PoC includes steps to achieve a reverse shell.

This repository contains a functional exploit for CVE-2025-50286, demonstrating an authenticated RCE vulnerability in Grav CMS v1.7.48 with Admin Plugin v1.10.48 via malicious plugin upload. The PoC includes a malicious plugin that executes arbitrary commands via shell_exec($_GET['cmd']).

This repository contains a functional Metasploit module for CVE-2025-50286, which exploits an authenticated RCE vulnerability in Grav CMS via the Admin panel's Direct Install plugin functionality. The exploit uploads a crafted plugin archive containing arbitrary PHP code, leading to remote command execution.

This Metasploit module exploits an authenticated RCE vulnerability in Grav CMS by uploading a malicious plugin via the Direct Install feature. It authenticates as an admin, crafts a plugin archive with embedded PHP payload, and triggers execution.