PoC-in-GitHub/2025/CVE-2025-54236.json

[
    {
        "id": 1053966464,
        "name": "day01-sessionreaper-lab",
        "full_name": "amalpvatayam67\/day01-sessionreaper-lab",
        "owner": {
            "login": "amalpvatayam67",
            "id": 200071444,
            "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/200071444?v=4",
            "html_url": "https:\/\/github.com\/amalpvatayam67",
            "user_view_type": "public"
        },
        "html_url": "https:\/\/github.com\/amalpvatayam67\/day01-sessionreaper-lab",
        "description": "This is a tiny lab that simulates the core idea reported for CVE-2025-54236 (“SessionReaper”)",
        "fork": false,
        "created_at": "2025-09-10T07:19:12Z",
        "updated_at": "2025-11-02T19:15:45Z",
        "pushed_at": "2025-09-10T07:21:35Z",
        "stargazers_count": 0,
        "watchers_count": 0,
        "has_discussions": false,
        "forks_count": 0,
        "allow_forking": true,
        "is_template": false,
        "web_commit_signoff_required": false,
        "topics": [],
        "visibility": "public",
        "forks": 0,
        "watchers": 0,
        "score": 0,
        "subscribers_count": 0
    },
    {
        "id": 1079044624,
        "name": "magento2-session-reaper-patch",
        "full_name": "wubinworks\/magento2-session-reaper-patch",
        "owner": {
            "login": "wubinworks",
            "id": 127310257,
            "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/127310257?v=4",
            "html_url": "https:\/\/github.com\/wubinworks",
            "user_view_type": "public"
        },
        "html_url": "https:\/\/github.com\/wubinworks\/magento2-session-reaper-patch",
        "description": "Patch for CVE-2025-54236(a.k.a Session Reaper) which allows customer account takeover and RCE under certain conditions. This patch is actually a Magento 2 extension and universal compatible for Magento 2.3 & 2.4. If you cannot upgrade Magento or cannot apply the official hotfix, try this one.",
        "fork": false,
        "created_at": "2025-10-19T01:08:24Z",
        "updated_at": "2025-11-23T03:27:28Z",
        "pushed_at": "2025-11-09T11:30:00Z",
        "stargazers_count": 1,
        "watchers_count": 1,
        "has_discussions": false,
        "forks_count": 0,
        "allow_forking": true,
        "is_template": false,
        "web_commit_signoff_required": false,
        "topics": [
            "customer-account-takeover",
            "cve-2025-54236",
            "magento2-extension",
            "patch",
            "rce",
            "security",
            "session-reaper",
            "session-takeover",
            "sessionreaper",
            "vulnerability"
        ],
        "visibility": "public",
        "forks": 0,
        "watchers": 1,
        "score": 0,
        "subscribers_count": 0
    }
]