Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-27210 PoC — Node.js 路径遍历漏洞

Source
https://github.com/mindeddu/Vulnerable-CVE-2025-27210
Associated Vulnerability
Title:Node.js 路径遍历漏洞 (CVE-2025-27210)
Description:An incomplete fix has been identified for CVE-2025-23084 in Node.js, specifically affecting Windows device names like CON, PRN, and AUX. This vulnerability affects Windows users of `path.join` API.
Description
2 web apps vulnerable to CVE-2025-27210
File Snapshot

 [4.0K]  /data/pocs/127eba5d4e3698b8fe53f64b2e989171ef9bfb3d
├── [4.0K]  App_CVE-2025-27210
│   ├── [5.9K]  CVE-2025-27210_mod.py
│   ├── [5.7K]  CVE-2025-27210.py
│   ├── [ 283]  package.json
│   ├── [4.0K]  public
│   │   └── [ 758]  styles.css
│   ├── [5.9K]  server.js
│   └── [4.0K]  views
│       └── [3.0K]  index.ejs
└── [4.0K]  App_CVE-2025-27210_bis
    ├── [2.7K]  app.js
    ├── [5.9K]  CVE-2025-27210_mod.py
    ├── [ 283]  package.json
    └── [4.0K]  public
        └── [   0]  test

5 directories, 10 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →