Share
## https://sploitus.com/exploit?id=04C5B854-C57A-5A6D-B3AC-46DBE7DC64C4
# pgAdmin4 Query Tool Authenticated RCE PoC

Standalone python script to exploit pgAdmin4 query tool authenticated RCE vulnerability (CVE-2025-2945) in pgAdmin4 version 8.10 - 9.1.

Ported from Metasploit module: [pgadmin_query_tool_authenticated.rb](https://github.com/rapid7/metasploit-framework/blob/8ad35c05346b7caa94284e66e9045012dc3b8006/modules/exploits/multi/http/pgadmin_query_tool_authenticated.rb)

References:

- https://vulners.com/cve/CVE-2025-2945
- https://nvd.nist.gov/vuln/detail/CVE-2025-2945
- https://github.com/advisories/GHSA-g73c-fw68-pwx3

This software is designed for educational and research purposes only. The author is not responsible for any misuse of the code provided here.