Share
## https://sploitus.com/exploit?id=5FBD322E-2A13-51C2-8391-2C268BDA0363
# CVE-2025-55182 Exploit Tool
CVE-2025-55182 Comprehensive Exploitation/Detection Tool
**Developed by [MingYi Security Lab](https://github.com/mingyisecurity-lab)**
## Features
- **Vulnerability Detection**: Batch scan multiple targets for the vulnerability
- **Path Scanning**: Scan common Server Action endpoints to discover vulnerable paths
- **Remote Code Execution**: Execute system commands on vulnerable targets
## Installation
```bash
go build -o cve-tool main.go
```
## Usage
```bash
./cve-tool
```
### Keyboard Shortcuts
| Key | Action |
|-----|--------|
| `Tab` | Switch between input fields |
| `Shift+Tab` | Previous input field |
| `F1` / `Ctrl+1` | Detection tab |
| `F2` / `Ctrl+2` | Path Scan tab |
| `F3` / `Ctrl+3` | Exploit tab |
| `Enter` | Execute current action |
| `Ctrl+Q` | Quick commands (Exploit tab) |
| `Esc` | Exit |
### Tabs
1. **Detection**: Scan one or multiple targets for the vulnerability
2. **Path Scan**: Discover vulnerable endpoints on a single target
3. **Exploit**: Execute commands on confirmed vulnerable targets
## Default Path Dictionary
The tool includes common Server Action paths:
- `/`, `/formaction`, `/action`, `/actions`
- `/api/action`, `/api/actions`, `/api/form`, `/api/submit`
- `/submit`, `/form`, `/rsc`, `/_rsc`
- `/_next/forms`, `/server-action`, `/server-actions`
## Disclaimer
This tool is for authorized security testing only. Unauthorized access to computer systems is illegal.
## License
Copyright ยฉ 2025 MingYi Security Lab. All rights reserved.