Exploit for CVE-2025-48827

Name: Exploit for CVE-2025-48827
Rating: 5 (189 reviews)

2025-05-31 | CVSS 10.0

## https://sploitus.com/exploit?id=4AD07364-3088-5AF3-B512-AA466CE375A5
**Description:**

RCE for Vbullettin versions between 5.0.0 - 5.7.5 and 6.0.0 - 6.0.3 with PHP 8.1

**Futures:**

- Multi thread
- Read from multiple target from file
- Detect vbullettin websites
- Checks vulnerabilit, if succes upload a php webshell


**Detail of usage:**

usage: CVE-2025-48827.py [-h] [--url URL] [--list LIST] [--threads THREADS] [--timeout TIMEOUT]

Identify and upload shell on vBulletin targets.

optional arguments:

  -h, --help         show this help message and exit
  
  --url URL          Single target URL
  
  --list LIST        File with list of targets
  
  --threads THREADS  Threads to use (default: 5)
  
  --timeout TIMEOUT  Request timeout in seconds (default: 10)