CVE-2025-24367

This repository contains a Python-based exploit for CVE-2025-24367, an authenticated remote code execution (RCE) vulnerability in Cacti. The exploit leverages a graph template manipulation to execute arbitrary commands via a reverse shell payload.

The repository contains functional exploit code for multiple CVEs, including authentication bypass vulnerabilities in TOTOLINK devices and a scanner for Fortinet SSL VPN (CVE-2024-21762). The PoCs demonstrate the vulnerabilities with clear technical details and functional code.

This PoC exploits an authenticated command injection vulnerability in Cacti via crafted graph template parameters. It logs in, injects a malicious RRD graph command, and retrieves the output via a generated PHP file.

This is a functional exploit for CVE-2025-24367, an authenticated RCE vulnerability in Cacti. It leverages graph template manipulation to execute arbitrary commands via crafted RRDTool graph definitions, resulting in a reverse shell.

This is a functional PoC exploit for CVE-2025-24367, an authenticated RCE vulnerability in Cacti. It abuses insufficient input sanitization in graph template handling to write and execute a PHP file, resulting in a reverse shell.

This exploit leverages an authenticated RCE vulnerability in Cacti's graph template functionality by injecting malicious commands into the right_axis_label parameter, leading to arbitrary code execution. It uses a two-stage payload to fetch and execute a reverse shell.

This Metasploit module exploits an authenticated RCE vulnerability in Cacti versions prior to 1.2.29 by injecting malicious commands into the `right_axis_label` parameter of a graph template, which are then executed when the template is triggered.