daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #7000 from j4vaovo/patch-4 

Update CVE-2022-46169.yaml
patch-1
Prince Chaddha 2023-03-31 13:23:32 +05:30 committed by GitHub
parent 3f05703915 c532a200df
commit 2e9f322c8d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 10 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
cves/2022/CVE-2022-46169.yaml
View File

@ -1,7 +1,7 @@
id: CVE-2022-46169
info:
name: Cacti <= 1.2.22 Unauthenticated Command Injection
name: Cacti <= 1.2.22 - Unauthenticated Command Injection
author: Hardik-Solanki
severity: critical
description: |
@ -19,7 +19,10 @@ info:
metadata:
shodan-query: title:"Login to Cacti"
verified: "true"
tags: cve2022,cve,auth-bypass,cacti,kev
tags: cve2022,cve,auth-bypass,cacti,kev,rce,unauth
variables:
useragent: '{{rand_base(6)}}'
requests:
- raw:
@ -43,6 +46,11 @@ requests:
words:
- "http"
- type: word
part: interactsh_request
words:
- "User-Agent: {{useragent}}"
- type: status
status:
- 200