CVE-2025-2825

GitHub - ghostsec420/ShatteredFTP: Shattered is a tool and POC for the new CrushedFTP vulns, CVE Exploit Script: CVE-2025-2825 vs CVE-2025-31161 https://t.co/EsmLV1fo1b

[1Day1Line] CVE-2025-31161: Authentication Bypass Vulnerability in CrushFTP via Parameter Overloading https://t.co/riCEAUO6Db Hello. Today’s 1Day1Line is about a CrushFTP vulnerability that sparked controversy after being assigned two CVEs — CVE-2025-31161 and CVE-2025-2825.

🚨 New plugin for CrushFTP's CVE-2025-2825/CVE-2025-31161 is up. While enumerating users to validate vulnerable instances we noticed a pattern. It's on all instances we scanned for, can you see it? What do you make of it? https://t.co/YpesS10A1N

Actively exploited CVE : CVE-2025-2825

CrushFTP vulnerability CVE-2025-2825 is under active exploitation, with attackers bypassing authentication to gain unauthorized access to file transfer servers. Early disclosure missteps and confusion around CVE identifiers made things worse, allowing attackers to act faster. htt

Actively exploited CVE : CVE-2025-2825

me releases a new poc: POC: ```bash curl xxx/etc/passwd?raw&import?? ``` cve-2025-2825

Actively exploited CVE : CVE-2025-2825

Actively exploited CVE : CVE-2025-2825

We wrote up what @HuntressLabs has been seeing for the CrushFTP authentication bypass: CVE-2025-31161 (or CVE-2025-2825, whichever side of the bed you woke up on) leading to MeshCentral agents, AnyDesk, and neato "TelegramBot" malware. Patch plz! ✌️ https://t.co/Ax4cJjgONF https:

FTP, FTPS, SFTP, HTTP, HTTPS, and WebDAV, the CrushFTP tool is designed to use multiple protocols in many OS. SMEs around the world are affected by disclosed 🚨CVE-2025-2825 🚨 https://t.co/xxncBcSlIQ https://t.co/9lE6yOOPaj

🚨 CrushFTP under attack 💥 CVE-2025-2825 = critical auth bypass (CVSS 9.8) 📣 Disclosure drama: duplicate CVEs, public fights, & PoC leaks ⚠️ Exploits are active—1,500+ servers exposed Sloppy coordination = faster threats. #Infosec #CrushFTP 👉 https://t.co/yGFhOvNjXM

Two CVEs, One Critical Flaw: Inside the CrushFTP Vulnerability Controversy - (CVE-2025-31161 vs. CVE-2025-2825) https://t.co/89A8CpEzLo

⚠️ A critical vulnerability in #CrushFTP (CVE-2025-2825) is being exploited in the wild. Over 1,500 servers remain exposed. Urgent patching required. Read more: https://t.co/IXXINCoNl7 #CyberSecurity #InfoSec #CVE2025

Threat actors are exploiting CVE-2025-2825, a critical authentication bypass flaw (CVSS 9.8) in CrushFTP, using exploits based on publicly available proof-of-concept code. Learn about the vulnerability, affected versions, & how to detect and mitigate it: https://t.co/zBybnpnw

Critical auth bypass vulnerability CVE-2025-2825 in #CrushFTP is now exploited in cyber attacks: #CyberSecurity #CyberAttacks https://t.co/d8fGHRshBL

CrushFTPにおける重大な認証バイパスの脆弱性が現在攻撃に利用されています（CVE-2025-2825） https://t.co/p28cQyKCeW #Security #セキュリティ #ニュース

Actively exploited CVE : CVE-2025-2825

Critical #CrushFTP vulnerability (CVE-2025-2825) actively exploited. Over 1,500 unpatched instances worldwide. Update to version 11.3.1 immediately to secure your systems. #CyberSecurity #InfoSec https://t.co/ZaFsMpoq0W https://t.co/KJD6Ma9l7g

Critical CrushFTP flaw 🚨 CVE-2025-2825 is actively exploited 😱, allowing unauthenticated access to servers. Patch now 🔧 to prevent breaches! Details: https://t.co/cExsawddW9 #CyberSecurity #PatchNow 🛡️

A critical auth bypass vulnerability (CVE-2025-2825) in CrushFTP allows remote access for unauthenticated users on unpatched versions. Over 1,500 servers are at risk. 💻⚠️ #CrushFTP #RemoteAccess #USA link: https://t.co/IkYtLTx6hI https://t.co/ROTGOSiiVR

Attackers are targeting CrushFTP vulnerability with public PoC (CVE-2025-2825) https://t.co/fv37awtx8i #HelpNetSecurity #Cybersecurity https://t.co/vBx0GxVflg

CrushFTPの脆弱性CVE-2025-2825（CVSSスコア9.8）が攻撃に悪用されだした。Shadowserver報告。ハニーポットでの観測。 https://t.co/dh5wMBSvqa

CrushFTP CVE-2025-2825 flaw actively exploited in the wild https://t.co/Fn0hRgpyv1

Critical CrushFTP Vulnerability Under Attack: Over 1,500 Servers at Risk Hackers are actively exploiting a newly discovered authentication bypass flaw (CVE-2025-2825) in CrushFTP, a widely used file transfer solution. ( Happy New Month #AprilFoolsDay Eid Mubarak )

CrushFTP Blames Security Firms for Fast Exploitation of Vulnerability Shadowserver has started seeing exploitation attempts aimed at a CrushFTP vulnerability tracked as CVE-2025-2825 and CVE-2025-31161. https://t.co/qyj56WI1bR https://t.co/aUSE1iJ8Zg

Threat Alert: CVE-2025-2825: Unauthenticated HTTP(S) port access on CrushFTPv10-v11 CVE-2024-4040 Severity: 🔴 High Maturity: 💥 Mainstream Learn more: https://t.co/WswOdXmMW4 #CyberSecurity #ThreatIntel #InfoSec (1/3)

Full technical analysis of CrushFTP CVE-2025-2825 here c/o @the_emmons — looks like Project Discovery came to the same conclusions we did independently (we tend to not publish these on Fridays :) https://t.co/5t6rkiFd3q

CrushFTP actively exploited via CVE-2025-2825: Unauthenticated RCE now has public PoC & Nuclei template. Attackers compromising servers globally. Technical details: https://t.co/X7pjE0RgnU #CyberSecurity #0Day

🚨Alert🚨 CVE-2025-2825 : Remote and unauthenticated HTTP requests to CrushFTP may allow attackers to gain unauthorized access. 🧐Deep Dive :https://t.co/cWoab3rxs9 📊 102.4K+ Services are found on the https://t.co/ysWb28Crld yearly. 🔗Hunter Link:https://t.co/OpFcAmqXXM 👇Query

CVE-2025-2825: CrushFTP Unauthenticated Access Vulnerability https://t.co/y5bBK2zOCG

🚨 CrushFTP Vulnerability (CVE-2025-2825) 🚨 If you're using CrushFTP, check your version! A critical flaw allows unauthorized access via open HTTP(S) ports. 36,000 servers are exposed, with 3400 vulnerable. Update to v10.8.4+ or v11.3.1+ ASAP or enable DMZ for mitigation. #hack

CrushFTP: Patch critical vulnerability ASAP! (CVE-2025-2825) - Help Net Security https://t.co/ws45NO2qOA

Modat Magnify Alert:  We’ve identified ~2,500 exposed CrushFTP instances worldwide.  According to @Shadowserver ~1,800 may be vulnerable to CVE-2025-2825 (CVSS 9.8) — an auth bypass via HTTP(S) that can be exploited. https://t.co/TYQQbwss1F  #ModatMagnify #crushftp #infosec #cve

🚨 CVE-2025-2825: CrushFTP Authentication Bypass (CVSS 9.8) 🚨 A critical auth bypass in CrushFTP 10.0.0–10.8.3 and 11.0.0–11.3.0 allows remote attackers to gain full access using S3-style headers. The flaw stems from improper handling of authentication flags—letting attackers h

🚨 Breaking: CrushFTP's latest feature? Unauthenticated Access! Just kidding – but CVE-2025-2825 sure makes it seem so. Check out the full exploit review before your server parties like it's 1999: https://t.co/Xwcjir2O0b #CyberSecurity #CVE2025_2825 😎 https://t.co/KpsBVIj5EQ

Our Indicators of Compromise blog post for CVE-2025-2825, an authentication bypass affecting #CrushFTP. https://t.co/1F0WfFhwlA

🚨 CVE-2025-2825 ⚠️🔴 CRITICAL (9.8) 🏢 CrushFTP - CrushFTP 🏗️ 11.0.0 🔗 https://t.co/D5Ve1CpEyu 🔗 https://t.co/fw2zKcPM2x 🔗 https://t.co/piHgBpXSL8 #CyberCron #VulnAlert #InfoSec https://t.co/H2yqIqkVQb

CVE-2025-2825: Critical flaw in CrushFTP allows unauthenticated remote access. Patch immediately—attackers can bypass authentication completely. Details: https://t.co/6fPA7nNVkF #CyberSecurity #PatchNow

#CrushFTP: Patch critical #vulnerability ASAP! (#CVE-2025-2825) https://t.co/0auqLymTXk

CrushFTP: Patch critical vulnerability ASAP! (CVE-2025-2825) https://t.co/H0Xzncn0xl #HelpNetSecurity #Cybersecurity https://t.co/D8WTiqMRuS

🚨CVE-2025-2825: Unauthenticated HTTP(S) port access on CrushFTPv10/v11 CVSS: 9.8 https://t.co/nmQIp3mRu4

CVE-2025-2825 CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are affected by a vulnerability that may result in unauthenticated access. Remote and unauthenticated … https://t.co/4uOX9h5biW

It's been 5 days since CrushFTP publicly disclosed a new vulnerability. But no CVE assignment. It's within VulnCheck CNA scope to assign so we figured it would be helpful (see: CVE-2025-2825). Sent CrushFTP a courtesy email. 🤷‍♂️ https://t.co/ItNo2ea5f3

New post from https://t.co/uXvPWJy6tj (CVE-2025-2825 | CrushFTP up to 10.8.3/11.3.0 HTTP Request improper authentication) has been published on https://t.co/5lDSTXCceS

[CVE-2025-2825: CRITICAL] Critical vulnerability in CrushFTP versions 10.0.0-10.8.3 & 11.0.0-11.3.0 allows unauthenticated access. Attackers can exploit this flaw remotely through HTTP requests.#cybersecurity,#vulnerability https://t.co/I9jAkmyBur https://t.co/p2amrFVxFe