Lucene search
HistoryJun 25, 2014 - 8:55 p.m.
CVE-2014-4644
cve
2014
4644
sql injection
vulnerability
superlinks.php
superlinks plugin
cacti
remote attackers
arbitrary sql commands
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.6 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
48.6%
SQL injection vulnerability in superlinks.php in the superlinks plugin 1.4-2 for Cacti allows remote attackers to execute arbitrary SQL commands via the id parameter.
Affected configurations
Node
cactisuperlinksMatch1.4-2cacti
| CPE | Name | Operator | Version |
|---|---|---|---|
| cacti:superlinks | cacti superlinks | eq | 1.4-2 |
Related
nvd
nvd
CVE-2014-4644
2014-06-25 20:55:07
zdt
zdt
Cacti Superlinks 1.4-2 Code Execution / LFI / SQL Injection Vulnerabilities
2014-12-21 00:00:00
packetstorm
packetstorm
Cacti Superlinks 1.4-2 Code Execution / LFI / SQL Injection
2014-12-20 00:00:00
exploitpack
exploitpack
Cacti Superlinks Plugin 1.4-2 - SQL Injection Local File Inclusion
2014-12-19 00:00:00
prion
prion
Sql injection
2014-06-25 20:55:00
cvelist
cvelist
CVE-2014-4644
2014-06-25 20:00:00
exploitdb
exploitdb
Cacti Superlinks Plugin 1.4-2 - SQL Injection / Local File Inclusion
2014-12-19 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.6 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
48.6%
Related for CVE-2014-4644