CVE-2012-10047
published 2025-08-08CVE-2012-10047: Cyclope Employee Surveillance Solution versions 6.x are vulnerable to a SQL injection flaw in its login mechanism. The username parameter in the auth-login…
PriorityP269critical10CVSS 4.0
AVNACLATNPRNUINVCHVIHVAHSCHSIHSAHEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EXPLOIT
EPSS
0.86%
54.1th percentile
Cyclope Employee Surveillance Solution versions 6.x are vulnerable to a SQL injection flaw in its login mechanism. The username parameter in the auth-login POST request is not properly sanitized, allowing attackers to inject arbitrary SQL statements. This can be leveraged to write and execute a malicious PHP file on disk, resulting in remote code execution under the SYSTEM user context.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cyclope-series | cyclope_employee_surveillance_solution | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor POST requests to the /auth-login endpoint of Cyclope ESS for SQL metacharacters or injection patterns in the username parameter. ↗
- →Alert on creation of new PHP files in the Cyclope ESS web root, as exploitation can result in a malicious PHP webshell being written to disk. ↗
- →Investigate any processes spawned under the SYSTEM context originating from the Cyclope ESS web service, as successful exploitation results in code execution as SYSTEM. ↗
- ·Vulnerability is confirmed to affect Cyclope Employee Surveillance Solution version 6.x only; other versions are not referenced as affected. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/http/cyclope_ess_sqli.rbhttps://www.cyclope-series.com/https://www.exploit-db.com/exploits/20393https://www.exploit-db.com/exploits/20501https://www.vulncheck.com/advisories/cyclope-employee-surveillance-solution-sql-injectionhttps://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/http/cyclope_ess_sqli.rbhttps://www.exploit-db.com/exploits/20393https://www.exploit-db.com/exploits/20501
2025-08-08
Published