linux

package
v0.1.4 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 2, 2026 License: AGPL-3.0 Imports: 1 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type OpenDCIM 

type OpenDCIM struct{ sdk.Pik }

OpenDCIM exploits SQL injection in openDCIM's install.php LDAP config update to achieve RCE via dot binary path poisoning (CVE-2026-28515/28516/28517).

func (*OpenDCIM) Check 

func (m *OpenDCIM) Check(run *sdk.Context) (sdk.CheckResult, error)

Check probes install.php accessibility and confirms SQLi via time-based test.

func (*OpenDCIM) ExecuteCommand 

func (m *OpenDCIM) ExecuteCommand(run *sdk.Context, cmd string) error

ExecuteCommand injects a command via SQLi into the dot binary path and triggers it.

func (*OpenDCIM) Exploit 

func (m *OpenDCIM) Exploit(run *sdk.Context) error

Exploit chains SQLi to RCE. Handles both single-shot payloads and CmdStager chunked delivery. Backs up config before, restores after.

func (*OpenDCIM) Info 

func (m *OpenDCIM) Info() sdk.Info

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.