CVE-2012-10047

CRITICAL

Cyclope Employee Surveillance Solution 6.x - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2012-10047. PoCs published by Metasploit, loneferret, loneferret, sinn3r, including Metasploit module exploits/windows/http/cyclope_ess_sqli.

AI-analyzed exploit summary This Metasploit module exploits a SQL injection vulnerability in Cyclope Employee Surveillance Solution v6.2 or older, allowing arbitrary code execution under the context of 'SYSTEM' via malicious username parameter manipulation.

Description

Cyclope Employee Surveillance Solution versions 6.x are vulnerable to a SQL injection flaw in its login mechanism. The username parameter in the auth-login POST request is not properly sanitized, allowing attackers to inject arbitrary SQL statements. This can be leveraged to write and execute a malicious PHP file on disk, resulting in remote code execution under the SYSTEM user context.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/20501

This Metasploit module exploits a SQL injection vulnerability in Cyclope Employee Surveillance Solution v6.2 or older, allowing arbitrary code execution under the context of 'SYSTEM' via malicious username parameter manipulation.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Cyclope Employee Surveillance Solution v6.2 or older
No auth needed
Prerequisites: Network access to the target application · Target application running on port 7879
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by loneferret · pythonwebappswindows
https://www.exploit-db.com/exploits/20393

This exploit demonstrates SQL injection leading to remote code execution in Cyclope Employee Surveillance Solution v6.0. It leverages improper input sanitization in the login form's username parameter to write a PHP backdoor, enabling arbitrary command execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Cyclope Employee Surveillance Solution v6.0
No auth needed
Prerequisites: Network access to the target application · Default installation path of the software · MySQL database backend
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by loneferret, sinn3r · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/cyclope_ess_sqli.rb

This Metasploit module exploits a SQL injection vulnerability in Cyclope Employee Surveillance Solution v6.2 or older, allowing arbitrary code execution under the context of 'SYSTEM' by injecting a PHP payload that writes and executes a malicious executable.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Cyclope Employee Surveillance Solution v6.2 or older
No auth needed
Prerequisites: Network access to the target application · Target application running on port 7879
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Scores

CVSS v4 10.0
EPSS 0.7117
EPSS Percentile 98.7%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-89
Status published
Products (2)
Cyclope-Series/Cyclope Employee Surveillance Solution 6.0
Cyclope-Series/Cyclope Employee Surveillance Solution 6.x
Published Aug 08, 2025
Tracked Since Feb 18, 2026