PR
ADD CVE-2025-61932(KEV)
projectdiscovery/nuclei-templates#13878
/claim #13724
Template / PR Information
- Added CVE-2025-61932
- References:
Template Validation
I’ve validated this template locally?
- YES
- NO
┌──(intel_ears㉿kali)-[~/Documents/61932]
└─$ nuclei -t CVE-2025-61932.yaml -u https://54.168.213.177 -debug
__ _
____ __ _______/ /__ (_)
/ __ \/ / / / ___/ / _ \/ /
/ / / / /_/ / /__/ / __/ /
/_/ /_/\__,_/\___/_/\___/_/ v3.4.6
projectdiscovery.io
[INF] Current nuclei version: v3.4.6 (outdated)
[INF] Current nuclei-templates version: v10.3.1 (latest)
[WRN] Scan results upload to cloud is disabled.
[INF] New templates added in latest release: 119
[INF] Templates loaded for current scan: 1
[WRN] Loading 1 unsigned templates for scan. Use with caution.
[INF] Targets loaded for current scan: 1
[INF] [CVE-2025-61932] Dumped HTTP request for https://54.168.213.177
GET / HTTP/1.1
Host: 54.168.213.177
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
Connection: close
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip
[DBG] [CVE-2025-61932] Dumped HTTP response https://54.168.213.177
HTTP/1.1 200 OK
Connection: close
Content-Length: 536
Accept-Ranges: bytes
Cache-Control: no-cache
Content-Type: text/html
Date: Mon, 10 Nov 2025 01:16:03 GMT
Etag: "68ff4812-218"
Last-Modified: Mon, 27 Oct 2025 10:23:14 GMT
Server: nginx/1.24.0
<!DOCTYPE html>
<html lang="ja">
<head>
<meta charset="utf-8" />
<link rel="icon" href="/favicon.ico"/>
<title>LANSCOPE デバイス検査</title>
<script type="module" crossorigin src="/assets/index-DDiG7ZMQ.js"></script>
<link rel="modulepreload" crossorigin href="/assets/Paths-vS0bA8xu.js">
<link rel="stylesheet" crossorigin href="/assets/index-C44oE9y0.css">
</head>
<body>
<div id="root"></div>
</body>
</html>
<style>
input::-ms-reveal,
input::-ms-clear {
display: none;
}
</style>
[INF] [CVE-2025-61932] Dumped HTTP request for https://54.168.213.177/mrai/login
GET /mrai/login HTTP/1.1
Host: 54.168.213.177
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
Connection: close
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip
[DBG] [CVE-2025-61932] Dumped HTTP response https://54.168.213.177/mrai/login
HTTP/1.1 200 OK
Connection: close
Content-Length: 536
Accept-Ranges: bytes
Cache-Control: no-cache
Content-Type: text/html
Date: Mon, 10 Nov 2025 01:16:03 GMT
Etag: "68ff4812-218"
Last-Modified: Mon, 27 Oct 2025 10:23:14 GMT
Server: nginx/1.24.0
<!DOCTYPE html>
<html lang="ja">
<head>
<meta charset="utf-8" />
<link rel="icon" href="/favicon.ico"/>
<title>LANSCOPE デバイス検査</title>
<script type="module" crossorigin src="/assets/index-DDiG7ZMQ.js"></script>
<link rel="modulepreload" crossorigin href="/assets/Paths-vS0bA8xu.js">
<link rel="stylesheet" crossorigin href="/assets/index-C44oE9y0.css">
</head>
<body>
<div id="root"></div>
</body>
</html>
<style>
input::-ms-reveal,
input::-ms-clear {
display: none;
}
</style>
[INF] [CVE-2025-61932] Dumped HTTP request for https://54.168.213.177/api/version
GET /api/version HTTP/1.1
Host: 54.168.213.177
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
Connection: close
Accept: application/json
Accept-Encoding: gzip
[DBG] [CVE-2025-61932] Dumped HTTP response https://54.168.213.177/api/version
HTTP/1.1 200 OK
Connection: close
Content-Length: 536
Accept-Ranges: bytes
Cache-Control: no-cache
Content-Type: text/html
Date: Mon, 10 Nov 2025 01:16:04 GMT
Etag: "68ff4812-218"
Last-Modified: Mon, 27 Oct 2025 10:23:14 GMT
Server: nginx/1.24.0
<!DOCTYPE html>
<html lang="ja">
<head>
<meta charset="utf-8" />
<link rel="icon" href="/favicon.ico"/>
<title>LANSCOPE デバイス検査</title>
<script type="module" crossorigin src="/assets/index-DDiG7ZMQ.js"></script>
<link rel="modulepreload" crossorigin href="/assets/Paths-vS0bA8xu.js">
<link rel="stylesheet" crossorigin href="/assets/index-C44oE9y0.css">
</head>
<body>
<div id="root"></div>
</body>
</html>
<style>
input::-ms-reveal,
input::-ms-clear {
display: none;
}
</style>
[INF] [CVE-2025-61932] Dumped HTTP request for https://54.168.213.177/version.txt
GET /version.txt HTTP/1.1
Host: 54.168.213.177
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
Connection: close
Accept-Encoding: gzip
[DBG] [CVE-2025-61932] Dumped HTTP response https://54.168.213.177/version.txt
HTTP/1.1 200 OK
Connection: close
Content-Length: 536
Accept-Ranges: bytes
Cache-Control: no-cache
Content-Type: text/html
Date: Mon, 10 Nov 2025 01:16:04 GMT
Etag: "68ff4812-218"
Last-Modified: Mon, 27 Oct 2025 10:23:14 GMT
Server: nginx/1.24.0
<!DOCTYPE html>
<html lang="ja">
<head>
<meta charset="utf-8" />
<link rel="icon" href="/favicon.ico"/>
<title>LANSCOPE デバイス検査</title>
<script type="module" crossorigin src="/assets/index-DDiG7ZMQ.js"></script>
<link rel="modulepreload" crossorigin href="/assets/Paths-vS0bA8xu.js">
<link rel="stylesheet" crossorigin href="/assets/index-C44oE9y0.css">
</head>
<body>
<div id="root"></div>
</body>
</html>
<style>
input::-ms-reveal,
input::-ms-clear {
display: none;
}
</style>
[INF] [CVE-2025-61932] Dumped HTTP request for https://54.168.213.177/api/server/info
GET /api/server/info HTTP/1.1
Host: 54.168.213.177
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
Connection: close
Accept: application/json
Accept-Encoding: gzip
[DBG] [CVE-2025-61932] Dumped HTTP response https://54.168.213.177/api/server/info
HTTP/1.1 200 OK
Connection: close
Content-Length: 536
Accept-Ranges: bytes
Cache-Control: no-cache
Content-Type: text/html
Date: Mon, 10 Nov 2025 01:16:05 GMT
Etag: "68ff4812-218"
Last-Modified: Mon, 27 Oct 2025 10:23:14 GMT
Server: nginx/1.24.0
<!DOCTYPE html>
<html lang="ja">
<head>
<meta charset="utf-8" />
<link rel="icon" href="/favicon.ico"/>
<title>LANSCOPE デバイス検査</title>
<script type="module" crossorigin src="/assets/index-DDiG7ZMQ.js"></script>
<link rel="modulepreload" crossorigin href="/assets/Paths-vS0bA8xu.js">
<link rel="stylesheet" crossorigin href="/assets/index-C44oE9y0.css">
</head>
<body>
<div id="root"></div>
</body>
</html>
<style>
input::-ms-reveal,
input::-ms-clear {
display: none;
}
</style>
[INF] [CVE-2025-61932] Dumped HTTP request for https://54.168.213.177/client/mr/status
GET /client/mr/status HTTP/1.1
Host: 54.168.213.177
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
Connection: close
Accept: application/json
Accept-Encoding: gzip
[DBG] [CVE-2025-61932] Dumped HTTP response https://54.168.213.177/client/mr/status
HTTP/1.1 200 OK
Connection: close
Content-Length: 536
Accept-Ranges: bytes
Cache-Control: no-cache
Content-Type: text/html
Date: Mon, 10 Nov 2025 01:16:05 GMT
Etag: "68ff4812-218"
Last-Modified: Mon, 27 Oct 2025 10:23:14 GMT
Server: nginx/1.24.0
<!DOCTYPE html>
<html lang="ja">
<head>
<meta charset="utf-8" />
<link rel="icon" href="/favicon.ico"/>
<title>LANSCOPE デバイス検査</title>
<script type="module" crossorigin src="/assets/index-DDiG7ZMQ.js"></script>
<link rel="modulepreload" crossorigin href="/assets/Paths-vS0bA8xu.js">
<link rel="stylesheet" crossorigin href="/assets/index-C44oE9y0.css">
</head>
<body>
<div id="root"></div>
</body>
</html>
<style>
input::-ms-reveal,
input::-ms-clear {
display: none;
}
</style>
[INF] [CVE-2025-61932] Dumped HTTP request for https://54.168.213.177/client/da/status
GET /client/da/status HTTP/1.1
Host: 54.168.213.177
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
Connection: close
Accept: application/json
Accept-Encoding: gzip
[DBG] [CVE-2025-61932] Dumped HTTP response https://54.168.213.177/client/da/status
HTTP/1.1 200 OK
Connection: close
Content-Length: 536
Accept-Ranges: bytes
Cache-Control: no-cache
Content-Type: text/html
Date: Mon, 10 Nov 2025 01:16:06 GMT
Etag: "68ff4812-218"
Last-Modified: Mon, 27 Oct 2025 10:23:14 GMT
Server: nginx/1.24.0
<!DOCTYPE html>
<html lang="ja">
<head>
<meta charset="utf-8" />
<link rel="icon" href="/favicon.ico"/>
<title>LANSCOPE デバイス検査</title>
<script type="module" crossorigin src="/assets/index-DDiG7ZMQ.js"></script>
<link rel="modulepreload" crossorigin href="/assets/Paths-vS0bA8xu.js">
<link rel="stylesheet" crossorigin href="/assets/index-C44oE9y0.css">
</head>
<body>
<div id="root"></div>
</body>
</html>
<style>
input::-ms-reveal,
input::-ms-clear {
display: none;
}
</style>
[INF] [CVE-2025-61932] Dumped HTTP request for https://54.168.213.177/assets/index-DjnHEglY.js
GET /assets/index-DjnHEglY.js HTTP/1.1
Host: 54.168.213.177
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
Connection: close
Accept: */*
Accept-Encoding: gzip
[DBG] [CVE-2025-61932] Dumped HTTP response https://54.168.213.177/assets/index-DjnHEglY.js
HTTP/1.1 200 OK
Connection: close
Content-Length: 536
Accept-Ranges: bytes
Cache-Control: no-cache
Content-Type: text/html
Date: Mon, 10 Nov 2025 01:16:06 GMT
Etag: "68ff4812-218"
Last-Modified: Mon, 27 Oct 2025 10:23:14 GMT
Server: nginx/1.24.0
<!DOCTYPE html>
<html lang="ja">
<head>
<meta charset="utf-8" />
<link rel="icon" href="/favicon.ico"/>
<title>LANSCOPE デバイス検査</title>
<script type="module" crossorigin src="/assets/index-DDiG7ZMQ.js"></script>
<link rel="modulepreload" crossorigin href="/assets/Paths-vS0bA8xu.js">
<link rel="stylesheet" crossorigin href="/assets/index-C44oE9y0.css">
</head>
<body>
<div id="root"></div>
</body>
</html>
<style>
input::-ms-reveal,
input::-ms-clear {
display: none;
}
</style>
[INF] [CVE-2025-61932] Dumped HTTP request for https://54.168.213.177/assets/index-DDiG7ZMQ.js
GET /assets/index-DDiG7ZMQ.js HTTP/1.1
Host: 54.168.213.177
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
Connection: close
Accept: */*
Accept-Encoding: gzip
[DBG] [CVE-2025-61932] Dumped HTTP response https://54.168.213.177/assets/index-DDiG7ZMQ.js
HTTP/1.1 200 OK
Connection: close
Content-Length: 1862849
Accept-Ranges: bytes
Cache-Control: no-cache
Content-Type: application/javascript
Date: Mon, 10 Nov 2025 01:16:06 GMT
Etag: "68ff4812-1c6cc1"
Last-Modified: Mon, 27 Oct 2025 10:23:14 GMT
Server: nginx/1.24.0
const __vite__mapDeps=(i,m=__vite__mapDeps,d=(m.f||(m.f=["assets/browser-C5i8nlLC.js","assets/Paths-vS0bA8xu.js"])))=>i.map(i=>d[i]);
import{g as e,a as t,b as n,c as r,d as o,e as a,f as i,h as s,i as l,j as c,u,k as d,l as p,m as h,n as f,o as g,p as m,q as v,r as x,s as y,t as b,v as S,w,x as C,y as E,z as k,A as I,B as j,C as P,D as N,E as T,F as A,G as R,H as F,I as M,J as D,K as O,L as _,M as L,N as z,O as B,P as U,Q as V,R as $,S as W,T as H,U as q,V as G,W as K,X as J,Y,Z as X}from"./Paths-vS0bA8xu.js";functio
.
.
.
.
).render(pe.jsx(fe.StrictMode,{children:pe.jsx(voe,{})}))}})();
[CVE-2025-61932:product-identification] [http] [critical] https://54.168.213.177/assets/index-DDiG7ZMQ.js ["assets/browser-C5i8nlLC.js","assets/Paths-vS0bA8xu.js","nginx/1.24.0"]
[CVE-2025-61932:vulnerability-indicators] [http] [critical] https://54.168.213.177/assets/index-DDiG7ZMQ.js ["assets/browser-C5i8nlLC.js","assets/Paths-vS0bA8xu.js","nginx/1.24.0"]
[CVE-2025-61932:response-validation] [http] [critical] https://54.168.213.177/assets/index-DDiG7ZMQ.js ["assets/browser-C5i8nlLC.js","assets/Paths-vS0bA8xu.js","nginx/1.24.0"]
[INF] Scan completed in 11.030413046s. 3 matches found.
Additional Details (leave it blank if not applicable)
Additional References:
Claim
Total prize pool
$100
Total paid
$0
Status
Pending
Submitted
November 10, 2025
Last updated
November 10, 2025
Contributors
K
K ARYA SEKHAR DAS
@intelligent-ears
Sponsors
PR
ProjectDiscovery
@projectdiscovery
$100