Exploit for CVE-2025-0133

Name: Exploit for CVE-2025-0133
Rating: 5 (9 reviews)
2026-06-29 | CVSS 6.9
## https://sploitus.com/exploit?id=DEF05E9F-F1E3-5A4F-86A8-45AC831C7D74
# CVE-2025-0133 Scanner

Palo Alto PAN-OS GlobalProtect Reflected XSS vulnerability scanner.

## Features

- Single target & mass scanning
- Multi-threaded (configurable)
- Proxy support (Burp, ZAP, etc.)
- Colored output with summary
- Save vulnerable URLs to file

## Installation

### Via pip (from GitHub)

```bash
pip install git+https://github.com/radityahack/cve-2025-0133.git
```

Then use anywhere:

```bash
cve-2025-0133 -u 192.168.1.1
```

### Manual (clone & run)

```bash
git clone https://github.com/radityahack/cve-2025-0133.git
cd cve-2025-0133
pip install -r requirements.txt
python cve_2025_0133.py -u 192.168.1.1
```

### Editable install (for development)

```bash
pip install -e .
```

## Usage

```
usage: cve_2025_0133.py [-h] (-u URL | -l LIST) [-t THREADS] [--proxy PROXY]
                        [--timeout TIMEOUT] [-o OUTPUT]

CVE-2025-0133 - Palo Alto GlobalProtect XSS Scanner

options:
  -h, --help            show this help message and exit
  -u, --url URL         Single target (IP or URL)
  -l, --list LIST       File containing list of targets
  -t, --threads THREADS Number of threads (default: 10)
  --proxy PROXY         Proxy (e.g. http://127.0.0.1:8080)
  --timeout TIMEOUT     Request timeout in seconds (default: 10)
  -o, --output OUTPUT   Save vulnerable exploit URLs to file
```

### Examples

```bash
# Single target
cve-2025-0133 -u 203.0.113.1

# Mass scan from file
cve-2025-0133 -l targets.txt

# With proxy (Burp Suite)
cve-2025-0133 -u https://vpn.target.com --proxy http://127.0.0.1:8080

# 50 threads + save results
cve-2025-0133 -l targets.txt -t 50 -o vulnerable.txt
```

## Output

```
╔══════════════════════════════════════════╗
║        CVE-2025-0133 Scanner           ║
║  Palo Alto GlobalProtect XSS Checker   ║
╚══════════════════════════════════════════╝

[*] Targets loaded: 50
[*] Checking...

  [VULNERABLE] https://203.0.113.1
  [NOT VULN]   https://203.0.113.2
  [TIMEOUT]    https://203.0.113.3

[*] Scan complete.
[*] Total: 50 | Vulnerable: 3 | Not vulnerable: 47

[!] VULNERABLE TARGETS:
  1. https://203.0.113.1/ssl-vpn/getconfig.esp?...
```

## Disclaimer

This tool is for **authorized security testing only**. Unauthorized scanning of systems you do not own or have explicit permission to test is illegal. The author is not responsible for misuse.

## License

MIT