Exploitation Summary
EIP tracks 5 public exploits for CVE-2014-4688. PoCs published by absolomb, andyfeili, jonathan-corbin.
AI-analyzed exploit summary This exploit targets a command injection vulnerability in pfSense <= 2.1.3 via the status_rrd_graph_img.php endpoint. It authenticates using provided credentials, then injects a reverse shell payload encoded in octal to bypass input filters.
Description
pfSense before 2.1.4 allows remote authenticated users to execute arbitrary commands via (1) the hostname value to diag_dns.php in a Create Alias action, (2) the smartmonemail value to diag_smart.php, or (3) the database value to status_rrd_graph_img.php.
Exploits (5)
This exploit targets a command injection vulnerability in pfSense <= 2.1.3 via the status_rrd_graph_img.php endpoint. It authenticates using provided credentials, then injects a reverse shell payload encoded in octal to bypass input filters.
This exploit targets a command injection vulnerability in pfSense <= 2.1.3 via the status_rrd_graph_img.php endpoint. It authenticates using provided credentials, then injects an octal-encoded reverse shell payload to achieve remote code execution.
This repository contains a functional Python exploit for CVE-2014-4688, a post-authentication command injection vulnerability in pfSense <= 2.1.3. The exploit leverages the `database` parameter in `status_rrd_graph_img.php` to execute arbitrary commands as root via a reverse shell.
This repository contains a functional Python exploit for CVE-2014-4688, a command injection vulnerability in pfSense's status_rrd_graph_img.php component. The exploit authenticates, retrieves a CSRF token, and injects a reverse shell payload via the database parameter.
This is a functional exploit for CVE-2014-4688, targeting a command injection vulnerability in pfSense <= 2.1.3 via the status_rrd_graph_img.php endpoint. It includes a reverse shell payload and handles authentication via CSRF token extraction.