Basic search

K
osvGoogleOSV:DSA-2384-1
HistoryFeb 04, 2012 - 12:00 a.m.

cacti - several

2012-02-0400:00:00
Google
osv.dev
6

Several vulnerabilities have been discovered in Cacti, a graphing tool
for monitoring data. Multiple cross site scripting issues allow remote
attackers to inject arbitrary web script or HTML. An SQL injection
vulnerability allows remote attackers to execute arbitrary SQL commands.

For the oldstable distribution (lenny), this problem has been fixed in
version 0.8.7b-2.1+lenny5.

For the stable distribution (squeeze), this problem has been fixed in
version 0.8.7g-1+squeeze1.

For the unstable distribution (sid), this problem has been fixed in
version 0.8.7i-2.

We recommend that you upgrade your cacti packages.

CPENameOperatorVersion
cactieq0.8.7g-1