Exploit for Unrestricted Upload of File with Dangerous Type in Apple Ipados CVE-2024-54525

Name: Exploit for Unrestricted Upload of File with Dangerous Type in Apple Ipados CVE-2024-54525
Rating: 5 (28 reviews)

2025-03-23 | CVSS 8.8

## https://sploitus.com/exploit?id=33556539-1DE9-5814-89F2-06BC97587F1A
# MBI (MyBallsItch/MobileBackup Insertion)
Proof-of-Concept exploit and details for **[`CVE-2024-54525`](https://nvd.nist.gov/vuln/detail/CVE-2024-54525)**.

## Details
blah blah blah MobileBackup blah bloop path escape doo dee dum iOS 18.2 (coming s0n™)

## PoC
coming s0n™

## Credits
- `Andrew James Gonzalez, Dragon Fruit Security (Davis Dai, ORAC 落云, Frank Du cooperative discovery)` for originally discovering this vulnerability.
- [Skadz](https://github.com/skadz108) for this PoC exploit.
- [JJTech](https://github.com/JJTech0130/) for SparseRestore (the backup library part, not the exploit).
- [leminlimez](https://github.com/leminlimez) for answering a bunch of questions about the internals of the backup system while I tried to figure things out.

### why tf did you name it this?
to stop clickbait :trollface: