## https://sploitus.com/exploit?id=EE27673B-183C-5817-8516-33D4A187D5CB
# CVE-2025-2825 - CrushFTP WebInterface Authentication bypass (CVE-2025-2825) PoC
This script exploits the CrushFTP authentication bypass vulnerability in versions:
- 10.0.0 ~ 10.8.3
- 11.0.0 ~ 11.3.0
## How It Works
CrushFTP's AWS S3-style authentication can be bypassed using:
- A fake but valid-looking `Authorization` header
- A specifically crafted `CrushAuth` cookie where the last 4 chars match `c2f` param
## Usage
```bash
chmod +x exploit_crushftp.sh
./exploit_crushftp.sh http://<target>:<port>