logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2014-5261

Description

The graph settings script (graph_settings.php) in Cacti 0.8.8b and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a font size, related to the rrdtool commandline in lib/rrd.php.


Affected Software


CPE Name Name Version
cacti:cacti cacti 0.8.7f
cacti:cacti cacti 0.8.7e
cacti:cacti cacti 0.8.7i
cacti:cacti cacti 0.8.7g
cacti:cacti cacti 0.8.7
cacti:cacti cacti 0.8.6e
cacti:cacti cacti 0.8.8b
cacti:cacti cacti 0.8.7d
cacti:cacti cacti 0.8.7c
cacti:cacti cacti 0.8.8a
cacti:cacti cacti 0.8.8
cacti:cacti cacti 0.8.7b
cacti:cacti cacti 0.8.7a

Related