Share
## https://sploitus.com/exploit?id=4FFB4E6E-509B-5902-A18F-EDEDFE81A3A5
# CVE-2025-26399

## How does this detection method work?

This script detects SolarWinds Web Help Desk instances vulnerable to CVE-2025-26399 by requesting the Helpdesk login page, confirming product identifiers in the response, extracting the embedded build token as a version string, and flagging systems running versions earlier than 12.8.7.0.

## How do I run this script?

1. Download Nuclei from [here](https://github.com/projectdiscovery/nuclei)
2. Copy the template to your local system
3. Run the following command: `nuclei -u https://yourHost.com -t template.yaml` 

## References

- https://www.solarwinds.com/trust-center/security-advisories/cve-2025-26399
- https://nvd.nist.gov/vuln/detail/CVE-2025-26399


## Disclaimer

Use at your own risk, I will not be responsible for illegal activities you conduct on infrastructure you do not own or have permission to scan.

## Share This Project


  
    
  
  
    
  
  
    
  


---

## Contact

Feel free to reach out via [Signal](https://signal.me/#eu/0Qd68U1ivXNdWCF4hf70UYFo7tB0w-GQqFpYcyV6-yr4exn2SclB6bFeP7wTAxQw) if you have any questions.