CVE-2025-54253

This repository provides a detailed technical analysis of CVE-2025-54253, an unauthenticated RCE vulnerability in Adobe AEM Forms on JEE, along with mitigation and detection guidance. It includes no exploit code but offers deep insights into the vulnerability mechanics, attacker playbook, and defensive strategies.

This repository contains functional exploit code for multiple CVEs, including authentication bypass vulnerabilities in TOTOLINK devices and a scanner for Fortinet SSL VPN (CVE-2024-21762). The PoCs demonstrate the vulnerabilities with clear technical details and executable scripts.

The repository contains a scanner tool for detecting CVE-2025-54253 and CVE-2025-54254 in Adobe Experience Manager (AEM) Forms. It supports safe detection, blind out-of-band (OOB) confirmation, and proof-of-concept validation workflows, but does not include functional exploit code for achieving RCE or XXE.

The repository claims to provide a simulated PoC for CVE-2025-54253 (Adobe AEM OGNL Injection) but lacks actual exploit code, instead directing users to external downloads via GitHub Releases. The README is detailed but focuses on defensive guidance rather than technical exploitation details.

This repository contains a functional PoC for CVE-2025-54253, an OGNL injection vulnerability in Adobe AEM Forms on JEE. The exploit demonstrates remote command execution via the `/adminui/debug` endpoint using crafted OGNL expressions.