CVE-2025-55315

This repository contains a proof-of-concept for CVE-2025-55315, which tests HTTP chunked-transfer and newline parsing behavior in ASP.NET Core. It includes a console app that starts a local Kestrel server and runs TCP-based tests to check for vulnerability.

This repository provides a detailed technical analysis of CVE-2025-55315, an HTTP request smuggling vulnerability in ASP.NET Core's Kestrel web server. It includes affected versions, mitigation steps, and detection methods but does not contain functional exploit code.

This repository contains a Python-based exploit for CVE-2025-55315, an HTTP Request Smuggling vulnerability in ASP.NET Core Kestrel. The tool includes detection, web.config extraction, and optional webshell upload capabilities.

This repository contains a functional Python-based exploit for CVE-2025-55315, an HTTP Request Smuggling vulnerability in ASP.NET Core's Kestrel Web Server. The exploit includes detailed technical analysis, multiple attack vectors (CL-TE, TE-CL, etc.), and stealth features to evade detection.

This repository contains detection tools for CVE-2025-55315, focusing on HTTP request smuggling via conflicting headers. It includes a Python scanner for vulnerable ASP.NET Core versions and Go-based network monitors for HTTP/HTTPS traffic analysis.

This repository demonstrates CVE-2025-55315, an HTTP request smuggling vulnerability in Kestrel's chunked transfer encoding parser in .NET 10.0.100-rc.1. The PoC includes vulnerable and patched API versions, along with proxy servers to exploit the flaw.

The repository contains only a minimal README with a CVE identifier and no functional exploit code or technical details. It appears to be a placeholder or stub.