CVE-2012-5683

ZPanel < 10.0.1 - Cross-Site Request Forgery via FTP User Creation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-5683. PoCs published by pcsjj.

AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in ZPanel <= 10.0.1, including CSRF, XSS, SQL injection, and a password reset weakness. It provides detailed HTTP requests to exploit these flaws, such as creating FTP users, injecting malicious scripts, and manipulating database content.

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in ZPanel 10.0.1 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) create new FTP users via a CreateFTP action in the ftp_management module to the default URI, (2) conduct cross-site scripting (XSS) attacks via the inFullname parameter in an UpdateAccountSettings action in the my_account module to zpanel/, or (3) conduct SQL injection attacks via the inEmailAddress parameter in an UpdateClient action in the manage_clients module to the default URI.

Exploits (1)

exploitdb WORKING POC VERIFIED

by pcsjj · textwebappsmultiple

https://www.exploit-db.com/exploits/22490

View Code ZIP pw:eip

This exploit demonstrates multiple vulnerabilities in ZPanel <= 10.0.1, including CSRF, XSS, SQL injection, and a password reset weakness. It provides detailed HTTP requests to exploit these flaws, such as creating FTP users, injecting malicious scripts, and manipulating database content.

Classification

Working Poc 95%

Attack Type

Sqli | Xss | Auth Bypass | Info Leak

Complexity

Moderate

Reliability

Reliable

Target: ZPanel <= 10.0.1

Auth required

Prerequisites: Valid session cookie (PHPSESSID) · Network access to the target ZPanel instance

MITRE ATT&CK