CVE-2007-4892

Plesk 7.6.1, 8.1.0, 8.1.1, 8.2.0 - SQL Injection via PLESKSESSID Cookie

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4892. PoCs published by Nick I Merritt.

AI-analyzed exploit summary This exploit demonstrates SQL injection in Plesk by manipulating the PLESKSESSID cookie to extract user information from the mysql.user table using time-based blind SQLi techniques.

Description

Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 8.1.0, 8.1.1, and 8.2.0 for Windows allow remote attackers to execute arbitrary SQL commands via a PLESKSESSID cookie to (1) login.php3 or (2) auth.php3.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nick I Merritt · textwebappsphp

https://www.exploit-db.com/exploits/30577

View Code ZIP pw:eip

This exploit demonstrates SQL injection in Plesk by manipulating the PLESKSESSID cookie to extract user information from the mysql.user table using time-based blind SQLi techniques.

Classification

Working Poc 90%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Plesk 7.6.1, 8.1.0, 8.1.1, 8.2.0 for Microsoft Windows

No auth needed

Prerequisites: Access to the target Plesk login page · Curl or similar HTTP client

MITRE ATT&CK