CVE-2025-54068

This repository contains a functional exploit tool for CVE-2025-54068, targeting Livewire versions below 3.6.4. The exploit leverages Laravel's encryption mechanisms to achieve remote command execution (RCE) either with or without the APP_KEY.

This repository contains a functional exploit for CVE-2025-54068, targeting Laravel Livewire applications with known APP_KEYs to achieve remote command execution. The tool includes multiple exploit scripts, payload generation, and mass scanning capabilities.

This repository contains a Python-based scanner for detecting CVE-2025-54068 in Laravel applications using Livewire v3.0.0-beta.1 through v3.6.3. It checks for vulnerable Livewire endpoints, version patterns, and HTML fingerprints but does not include exploit code.

This repository provides a functional exploit PoC for CVE-2025-54068, targeting Livewire v3.6.3. It includes a Dockerized Laravel environment with a vulnerable Livewire component and a Python script that demonstrates the exploit chain via a two-step request sequence.

This repository contains a functional honeypot designed to capture and analyze exploit attempts targeting CVE-2025-54068, a Livewire prop hydration RCE vulnerability. It includes a FastAPI-based web server, ASGI middleware for request logging, and a sandboxed Docker environment for payload analysis.