Vulnerability Details
Basic Information
| Title | Exploit for CVE-2025-31324 |
|---|---|
| Type | githubexploit |
| Published | 2025-04-28T13:19:54 |
| Last Seen | 2025-04-28T18:17:13 |
| CVSS Score | 10.0 (CRITICAL) |
CVSS v3 Details
| Attack Vector | NETWORK |
|---|---|
| Attack Complexity | LOW |
| Privileges Required | NONE |
| User Interaction | NONE |
| Scope | CHANGED |
| Confidentiality Impact | HIGH |
| Integrity Impact | HIGH |
| Availability Impact | HIGH |
CVE Information
| CVE IDs | CVE-2025-31324 |
|---|---|
| CWE | |
| Bulletin Family | exploit |
Description
A tool to detect and exploit a critical unauthenticated fileโupload vulnerability in SAP NetWeaver Visual Composer.
# Description
SAP NetWeaver Visual Composer includes a component called Metadata Uploader which lacks proper authorization checks, allowing unauthenticated attackers to upload arbitrary executable files (e.g., JSP, WAR) to the application server and achieve remote code execution.
Affected Products
Product: SAP NetWeaver Visual Composer (VCFRAMEWORK 7.50)
Component: /developmentserver/metadatauploader
SAP Security Note: 3594142
1- Clone repository:
“`git clone https://github.com/your-org/sap-cve-2025-31324-scanner.git“`
“`cd sap-cve-2025-31324-scanner“`
2- Install dependencies
“`pip install requests urllib3“`
“`chmod +x scanner.py“`
3- Single target scan
“`./scanner.py -s sap.example.com:50000 -v“`
4- Batch scan
“`./scanner.py -l targets.txt -o report.txt“`
# References
National Vulnerability Database: CVEโ2025โ31324 details (nvd.nist.gov)
SAP Support: Security Note 3594142 Patch Details
Impact Assessment
| Base Score | 10.0 |
|---|---|
| Severity | CRITICAL |