Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv3

CVE-2020-14295

Published: 17/06/2020 Updated: 07/11/2023
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2
VMScore: 580
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Cacti

Vulnerability Summary

A SQL injection issue in color.php in Cacti 1.2.12 allows an admin to inject SQL via the filter parameter. This can lead to remote command execution because the product accepts stacked queries.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cacti cacti 1.2.12

fedoraproject fedora 31

fedoraproject fedora 32

Vendor Advisories

Debian CVElist Bug Report Logs: cacti: CVE-2020-14295
Debian Bug report logs - #963139 cacti: CVE-2020-14295 Package: src:cacti; Maintainer for src:cacti is Cacti Maintainer <pkg-cacti-maint@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 19 Jun 2020 15:21:02 UTC Severity: important Tags: security, upstream Found in version ca ...

Exploits

Exploit DB: Cacti 1.2.12 SQL Injection / Remote Code Execution
Cacti version 1212 remote code execution exploit that leverages a remote SQL vulnerability ...

Github Repositories

https://github.com/mrg3ntl3m4n/poc-CVE-2020-14295

Proof of Concept for CVE-2020-14295.

CVE-2020-14295 CVE-2020-14295 proof of concept The original post can be found at exploit-db Install requirements python3 -m pip install -r requirementstxt Usage $ python3 cacti_sqli_rcepy --help usage: cacti_sqli_rcepy [-h] -t <target/host URL> -u <user> -p <password>

https://github.com/0xaniketB/HackTheBox-Monitors

HackTheBox-Monitors Writeup RFI-SQLi-Deserialization-DockerEscape Synopsis “Monitors” is marked as hard difficulty linux machine that features Apache service hosting Wordpress website The HTML source reveals a Wordpress plugin that is vulnerable to RFI (Remote File Inclusion) Using this vulnerability we read configuration file of Wordpress and apache, the former

https://github.com/0z09e/CVE-2020-14295

Authenticated SQL injection to command execution on Cacti 1.2.12

CVE-2020-14295 Vulnerability details - Cacti/cacti#3622 Install pip3 install -r requirementstxt Usage $ /gimme-a-shellpy --help usage: gimme-a-shellpy [-h] -t Target -U Username -P Password -i Shell-IP -p Shell-Port optional arguments: -h, --help show this help message and exit required arguments: -t Target Target URL -U Username Cacti username -P Pas

References

CWE-89https://github.com/Cacti/cacti/issues/3622http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.htmlhttps://security.gentoo.org/glsa/202007-03http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.htmlhttp://packetstormsecurity.com/files/162384/Cacti-1.2.12-SQL-Injection-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/162918/Cacti-1.2.12-SQL-Injection-Remote-Command-Execution.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKM5G3YNSZDHDZMPCMAHG5B5M2V4XYSE/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W64CIB6L4HZRVQSWKPDDKXJO4J2XTOXD/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=963139https://nvd.nist.govhttps://github.com/mrg3ntl3m4n/poc-CVE-2020-14295
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook