CVE-2025-52691

This repository contains a Nuclei template for detecting CVE-2025-52691, an arbitrary file upload vulnerability in SmarterMail. The template checks for vulnerable versions by extracting the build number from the login page and comparing it against the patched version.

This repository contains a Python script that detects CVE-2025-52691, a path traversal vulnerability in SmarterMail leading to unauthenticated RCE. The script attempts to upload a file to a specific directory to verify exploitability but does not execute arbitrary code.

This repository contains a functional exploit for CVE-2025-52691, a critical arbitrary file upload vulnerability in SmarterTools SmarterMail, leading to unauthenticated remote code execution (RCE). The PoC includes stealth features like randomized user agents, obfuscated ASPX web shells, and APT-level capabilities such as persistence and file exfiltration.

This repository contains a functional exploit for CVE-2025-52691, an unauthenticated arbitrary file upload vulnerability in SmarterMail (Build 9406 and earlier). The exploit uploads an ASPX webshell via multiple endpoints and methods, leveraging path traversal to achieve remote code execution.

This repository contains a scanner for CVE-2025-52691, a critical unauthenticated arbitrary file upload vulnerability in SmarterMail. The scanner detects vulnerable versions by probing endpoints and comparing build numbers but does not exploit the vulnerability.

This repository contains a functional exploit for CVE-2025-52691, which combines an authentication bypass (WT-2026-0001) and a pre-auth RCE via file upload in SmarterMail. The exploit automates a 3-phase attack to achieve SYSTEM-level command execution.

This repository contains a Python script that detects vulnerable SmarterMail versions affected by CVE-2025-52691 by checking the build number. It does not exploit the vulnerability but identifies potential targets.

This repository contains a functional exploit for CVE-2025-52691, an unauthenticated arbitrary file upload vulnerability in SmarterMail leading to RCE. It includes a scanner (check.py), an exploit tool (pwn.py), and a reusable Python library (exploit.py) for uploading ASPX webshells via path traversal.

The repository contains a Nuclei template for detecting SmarterMail versions vulnerable to CVE-2025-52691, an unauthenticated arbitrary file upload vulnerability. It checks for the presence of SmarterMail and compares the build version to determine vulnerability status.

The repository contains a functional Python exploit for CVE-2025-52691, an unauthenticated arbitrary file upload vulnerability in SmarterMail (build 9406 and earlier). The exploit automates uploading an ASPX webshell to the target server via multiple endpoints and methods, then verifies and executes commands.

This Metasploit module exploits a pre-authentication remote code execution vulnerability in SmarterTools SmarterMail by leveraging a directory traversal flaw in the `/api/upload` endpoint to upload a malicious ASPX web shell.