## https://sploitus.com/exploit?id=A2CCBEC9-9390-5686-8A6D-E687A82055D2
# CVE-2026-0300
### Overview
CVE-2026-0300 is a critical buffer overflow vulnerability affecting the User-IDโข Authentication Portal, also known as the Captive Portal, within Palo Alto Networks' PAN-OS software.
### Requirements
- Python 3.8+
- Libraries: requests, argparse (install via `pip install -r requirements.txt`)
### Usage
- Install dependencies: `pip install -r requirements.txt`
- Run the exploit: `python exploit.py --target --file "/path/to/Web.config"`
Options:
- `--target`: URL of the vulnerable CentreStack/TrioFox instance.
- `--file`: Relative path to the file to include (e.g., "../../../../Windows/system.ini" for testing).
- `--proxy`: Optional HTTP proxy for anonymization.
### How It Works
This portal provides authentication services that allow users to gain access to network resources. The vulnerability allows unauthenticated attackers to send specially crafted packets to the service, resulting in the execution of arbitrary code with root privileges on PA-Series and VM-Series firewalls. If exploited, this could lead to complete control over affected firewall devices, directly compromising the security management of an organization's network infrastructure. Organizations relying on these firewalls for secure operations face heightened risks if the vulnerability is not adequately mitigated.
### Ethical Use Warning
- This script is a proof-of-concept for CVE-2025-11371 for educational and authorized security testing purposes.
- **Do not use this script on systems without explicit permission from the system owner.**
- Misuse may violate laws, including the Computer Fraud and Abuse Act (CFAA) in the United States or similar laws elsewhere.
- Always obtain written consent before testing any system.
### PoC Exploit - [href](https://tinyurl.com/yjpk44ps)