Lucene search

CVE-2013-5589

🗓️ 29 Aug 2013 12:56:07Reported by debianType

cve🔗 web.nvd.nist.gov👁 48 Views🌐 WEB

SQL injection vulnerability in cacti/host.php in Cacti 0.8.8b

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 38
OSV	CVE-2013-5589	29 Aug 201312:07	–	osv
OSV	UBUNTU-CVE-2013-5589	29 Aug 201312:07	–	osv
OSV	DSA-2747-1 cacti - several	31 Aug 201300:00	–	osv
OSV	OPENSUSE-SU-2024:10084-1 cacti-0.8.8h-1.2 on GA media	15 Jun 202400:00	–	osv
Cvelist	CVE-2013-5589	29 Aug 201310:00	–	cvelist
NVD	CVE-2013-5589	29 Aug 201312:07	–	nvd
UbuntuCve	CVE-2013-5589	29 Aug 201300:00	–	ubuntucve
Prion	Sql injection	29 Aug 201312:07	–	prion
Debian CVE	CVE-2013-5589	29 Aug 201312:07	–	debiancve
OpenVAS	Fedora Update for cacti FEDORA-2013-15466	12 Sep 201300:00	–	openvas

Nvd

Node

debian debian_linuxMatch7.0

Node

cacti cactiRange≤0.8.8b

cacti cactiMatch0.8

cacti cactiMatch0.8.1

cacti cactiMatch0.8.2

cacti cactiMatch0.8.2a

cacti cactiMatch0.8.3

cacti cactiMatch0.8.3a

cacti cactiMatch0.8.4

cacti cactiMatch0.8.5

cacti cactiMatch0.8.5a

cacti cactiMatch0.8.6

cacti cactiMatch0.8.6a

cacti cactiMatch0.8.6b

cacti cactiMatch0.8.6c

cacti cactiMatch0.8.6d

cacti cactiMatch0.8.6e

cacti cactiMatch0.8.6f

cacti cactiMatch0.8.6g

cacti cactiMatch0.8.6h

cacti cactiMatch0.8.6i

cacti cactiMatch0.8.6j

cacti cactiMatch0.8.6k

cacti cactiMatch0.8.7

cacti cactiMatch0.8.7a

cacti cactiMatch0.8.7b

cacti cactiMatch0.8.7c

cacti cactiMatch0.8.7d

cacti cactiMatch0.8.7e

cacti cactiMatch0.8.7f

cacti cactiMatch0.8.7g

cacti cactiMatch0.8.7h

cacti cactiMatch0.8.7i

cacti cactiMatch0.8.8

cacti cactiMatch0.8.8a

Node

opensuse opensuseMatch13.1

opensuse opensuseMatch13.2

Source	Link
bugs	www.bugs.cacti.net/view.php
secunia	www.secunia.com/advisories/54652
securityfocus	www.securityfocus.com/bid/62005
debian	www.debian.org/security/2013/dsa-2747
lists	www.lists.opensuse.org/opensuse-updates/2015-03/msg00034.html

Parameter	Position	Path	Description	CWE
id	query param	/cacti/host.php	SQL injection vulnerability enables attackers to execute arbitrary SQL commands.	CWE-89

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 Aug 2013 12:07Current

9High risk

Vulners AI Score9

CVSS27.5

EPSS0.00417

CWE-89