CVE-2024-42327

This script checks for SQL injection vulnerability (CVE-2024-42327) in Zabbix by attempting a time-based SQLi test. It authenticates with the target, sends a crafted request with a SLEEP payload, and determines vulnerability based on the response.

This repository contains a functional exploit for CVE-2024-42327, a SQL injection vulnerability in Zabbix's CUser class. The exploit uses time-based SQL injection to extract admin session IDs and then leverages the Zabbix API to execute a reverse shell command.

The repository contains functional exploit code for multiple CVEs, including CVE-2026-22812, which demonstrates a command execution vulnerability in OpenCode. The script sends crafted requests to exploit the vulnerability and verify command execution via the 'id' command.

This script exploits CVE-2024-42327 in Zabbix by abusing the JSON-RPC API to fetch sensitive user information, including passwords, by iterating over user IDs after authenticating with valid credentials.

This repository contains a functional PoC for CVE-2024-42327, an SQL injection vulnerability in Zabbix's CUser class. The exploit leverages a time-based SQLi in the 'selectRole' parameter of the 'user.get' API endpoint, demonstrating the vulnerability with a SLEEP-based payload.

This repository contains a functional exploit for CVE-2024-42327, a critical SQL injection vulnerability in Zabbix servers. The exploit leaks the admin API token via blind SQLi and achieves RCE by creating a malicious item with a reverse shell payload.

This repository contains a functional Python exploit for CVE-2024-42327, an authenticated SQL injection vulnerability in Zabbix. The exploit leverages the `user.get` API endpoint to extract user credentials, session tokens, and execute custom SQL queries.

This repository contains a functional Python exploit for CVE-2024-42327, a SQL injection vulnerability in Zabbix's CUser class. The PoC demonstrates time-based SQLi and data exfiltration via the 'selectRole' parameter in the user.get API method.

This repository contains a functional Python exploit for CVE-2024-42327, an authenticated SQL injection vulnerability in Zabbix 7.0.0. The script supports multiple modes, including user data extraction, session token leaks, remote command execution via reverse shell, and custom SQL query injection.

This repository provides a detailed technical analysis of SQL injection vulnerabilities in Zabbix, focusing on CVE-2024-42327 and related CVEs. It includes root cause analysis, attack chains, and hardening recommendations, but does not contain functional exploit code.

This exploit leverages Zabbix's API to create and execute a malicious script on a target host, achieving remote code execution via a reverse shell. It interacts with the Zabbix API to list hosts, create a script with a reverse shell payload, and execute it on the target host.

This PoC exploits a SQL injection vulnerability in Zabbix's CUser.php to extract admin session tokens and user credentials, then executes arbitrary commands via script creation. It supports reverse shell payloads and credential enumeration.

This repository provides a detailed technical analysis of CVE-2024-42327, focusing on privilege escalation in Zabbix via API abuse. It includes step-by-step exploitation details, code snippets, and API request examples to demonstrate how a low-privileged user can escalate to administrator by manipulating user group assignments.