## https://sploitus.com/exploit?id=4FFB4E6E-509B-5902-A18F-EDEDFE81A3A5
# CVE-2025-26399
## How does this detection method work?
This script detects SolarWinds Web Help Desk instances vulnerable to CVE-2025-26399 by requesting the Helpdesk login page, confirming product identifiers in the response, extracting the embedded build token as a version string, and flagging systems running versions earlier than 12.8.7.0.
## How do I run this script?
1. Download Nuclei from [here](https://github.com/projectdiscovery/nuclei)
2. Copy the template to your local system
3. Run the following command: `nuclei -u https://yourHost.com -t template.yaml`
## References
- https://www.solarwinds.com/trust-center/security-advisories/cve-2025-26399
- https://nvd.nist.gov/vuln/detail/CVE-2025-26399
## Disclaimer
Use at your own risk, I will not be responsible for illegal activities you conduct on infrastructure you do not own or have permission to scan.
## Share This Project
---
## Contact
Feel free to reach out via [Signal](https://signal.me/#eu/0Qd68U1ivXNdWCF4hf70UYFo7tB0w-GQqFpYcyV6-yr4exn2SclB6bFeP7wTAxQw) if you have any questions.