CVEs-PoC/2025/CVE-2025-6384.md at 4e4e30233e70832d643d5c6ab6fbfa6f130b4bb1

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-29 16:29:28 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of CrafterCMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass.By inserting malicious Groovy elements, an attacker may bypass Sandbox restrictions and obtain RCE (Remote Code Execution).This issue affects CrafterCMS: from 4.0.0 through 4.2.2.

POC

Reference

No PoCs from references.

Github

https://github.com/PuddinCat/GithubRepoSpider
https://github.com/maestro-ant/CrafterCMS-CVE-2025-6384
https://github.com/mbadanoiu/CVE-2025-6384
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/yembors64632/cve_monitor_Public

1.1 KiB Raw Blame History

CVE-2025-6384

Description

POC

Reference

Github

1.1 KiB

Raw Blame History