CVE-2025-31324 PoC — Missing Authorization check in SAP NetWeaver (Visual Composer development server)

Source

Associated Vulnerability

Readme

## Info 

░█▄█░█▀█░█░█░█░█░█░█░▀█▀░█▀█░█▀█░█▀▄░█░█
░█░█░█▀▀░█░█░█░█░█▄█░░█░░█░█░█░█░█▀▄░░█░
░▀░▀░▀░░░▀▀▀░▀▀▀░▀░▀░▀▀▀░▀░▀░▀░▀░▀░▀░░▀░
           N U L L T R A C E

// NullTrace :: No logs. No noise. Just signal. //
----- SIGNATURE-----
Key: ssh-rsa AAAAB3...NullKey...KFA==
Fingerprint: 88:11:00:BE:HM:00:82:NULL:TR:ACE
Motto: "Privacy is not a crime. Silence is a weapon."
---

<p align="center">
  <img src="Screenshot.png" alt="SAP Exploit PoC Demo" width="600"/>
</p>

---


## 🛡️ SAP Vulnerability Disclosure

- 📌 Title       : [CVE-2025-31324]
- 🏢 Target      : SAP [Product]
- 🛠️ Type        : [ Remote Code Execution ]


---

## ⚙️ How TO Use
- USE: python CVE-2025-31324.py
<p align="center">
  <img src="Screenshot .png" alt="SAP Exploit PoC Demo" width="600"/>
</p>

---

## 🌌 Shodan Dorks
- "SAP NetWeaver"
- http.title:"SAP"
- port:50001

---

## Note
- https://t.me/NULLTRACE0X
- wait for SAP Exploit V.2

File Snapshot

 [4.0K]  /data/pocs/21dc71ce7b1568fb57941833601fb8b867d6f153
├── [4.0K]  CVE-2025-31324.py
├── [ 34K]  LICENSE
├── [1.2K]  README.md
├── [ 14K]  Screenshot .png
├── [ 51K]  Screenshot.png
└── [ 539]  shell.jsp

0 directories, 6 files

Remarks