Share
## https://sploitus.com/exploit?id=427D42C8-0E8A-53EE-83FA-65A28EE48011
This is a PoC exploit for CVE-2025-49844, a high-risk vulnerability in Redis database. The exploit is a GUI-based tool called "CVE-2025-49844(RediShell)漏洞检查软件(v2.0)" that helps enterprises efficiently detect and fix vulnerabilities. The tool is an iteration of the original CVE-2025-49844(RediShell)漏洞检查软件(v1.0) and adds features such as bulk IP address import, port scanning, bulk vulnerability detection, and exporting vulnerable IP lists.

The tool is written in Python and uses the tkinter library for the GUI. It creates a GUI window with a main frame, a title area, and a button to start the vulnerability detection process. The tool uses a queue to store the IP addresses to be scanned and a Redis client to connect to the Redis server.

The tool is designed to detect the Redis Shell vulnerability (CVE-2025-49844) in Redis versions 7.2.x, 7.4.x, 8.0.x, and 8.2.x. The vulnerability allows an attacker to execute arbitrary commands on the Redis server, potentially leading to remote code execution, sandbox escape, or server control.

The tool is not specified to be used for unauthorized