Lucene search
Alpine Linux Development TeamALPINE:CVE-2020-35701HistoryJan 11, 2021 - 4:15 p.m.
CVE-2020-35701
2021-01-1116:15:00
Alpine Linux Development Team
security.alpinelinux.org
32
0.017 Low
EPSS
Percentile
87.6%
An issue was discovered in Cacti 1.2.x through 1.2.16. A SQL injection vulnerability in data_debug.php allows remote authenticated attackers to execute arbitrary SQL commands via the site_id parameter. This can lead to remote code execution.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | cacti | < 1.2.17-r0 | UNKNOWN |
| Alpine | 3.13-community | noarch | cacti | < 1.2.17-r0 | UNKNOWN |
| Alpine | 3.14-community | noarch | cacti | < 1.2.17-r0 | UNKNOWN |
| Alpine | 3.15-community | noarch | cacti | < 1.2.17-r0 | UNKNOWN |
| Alpine | 3.16-community | noarch | cacti | < 1.2.17-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | cacti | < 1.2.17-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | cacti | < 1.2.17-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | cacti | < 1.2.17-r0 | UNKNOWN |
Related
freebsd
freebsd
cacti -- SQL Injection was possible due to incorrect validation order
2020-12-24 00:00:00
openvas
openvas
Fedora: Security Advisory for cacti (FEDORA-2021-0e0fd08e44)
2021-05-20 00:00:00
Fedora: Security Advisory for cacti-spine (FEDORA-2021-0e0fd08e44)
2021-05-20 00:00:00
Fedora: Security Advisory for cacti-spine (FEDORA-2021-598b6d2924)
2021-05-20 00:00:00
suse
suse
Security update for cacti, cacti-spine (important)
2021-05-21 00:00:00
Security update for cacti, cacti-spine (important)
2021-05-24 00:00:00
nessus
nessus
fedora
fedora
[SECURITY] Fedora 32 Update: cacti-1.2.17-1.fc32
2021-05-19 01:37:16
[SECURITY] Fedora 33 Update: cacti-1.2.17-1.fc33
2021-05-19 01:31:31
[SECURITY] Fedora 34 Update: cacti-1.2.17-1.fc34
2021-05-20 01:13:43
gentoo
gentoo
Cacti: Remote code execution
2021-01-26 00:00:00
prion
prion
Sql injection
2021-01-11 16:15:00
osv
osv
CVE-2020-35701
2021-01-11 16:15:15
cacti vulnerabilities
2022-06-09 09:14:15
veracode
veracode
SQL Injection
2021-01-21 04:50:35
cve
cve
CVE-2020-35701
2021-01-11 16:15:00
debiancve
debiancve
CVE-2020-35701
2021-01-11 16:15:00
ubuntucve
ubuntucve
CVE-2020-35701
2021-01-11 00:00:00
cvelist
cvelist
CVE-2020-35701
2021-01-11 15:57:51
ubuntu
ubuntu
Cacti vulnerabilities
2022-06-09 00:00:00