CVE-2025-54100

The repository provides a detailed technical analysis of CVE-2025-54100, which involves PowerShell's `Invoke-WebRequest` cmdlet executing JavaScript when `UseBasicParsing` is not specified, leading to XSS and potential RCE. It includes a proof-of-concept demonstrating the vulnerability and discusses the lifecycle of PowerShell versions affected.

This repository contains a functional Proof-of-Concept (PoC) for CVE-2025-54100, demonstrating Remote Code Execution (RCE) in Windows PowerShell 5.1 via malicious HTML parsing. The FastAPI server serves a crafted HTML payload that exploits the MSHTML-based parsing vulnerability in `Invoke-WebRequest` when `-UseBasicParsing` is not used.

This repository contains a functional proof-of-concept exploit for CVE-2025-54100, demonstrating remote code execution (RCE) in PowerShell 5.1 via malicious HTML parsing when `Invoke-WebRequest` is used without the `-UseBasicParsing` parameter. The exploit leverages MSHTML-based parsing to execute ActiveX objects, such as `WScript.Shell` or `Shell.Application`, to launch arbitrary commands (e.g., `calc.exe`).

The repository claims to provide a PoC for CVE-2025-54100 but lacks actual exploit code, instead describing a vague batch script approach without technical details. It references external links for context but does not include functional code or a detailed analysis.

This repository contains a functional Proof-of-Concept (PoC) for CVE-2025-54100, demonstrating Remote Code Execution (RCE) in Windows PowerShell 5.1 via malicious HTML parsing. The FastAPI server serves a crafted HTML payload that exploits MSHTML-based parsing to execute arbitrary commands.