Lucene search
K

2442 matches found

securityvulns
securityvulns
added 2008/03/11 12:0 a.m.58 views

[ GLSA 200803-18 ] Cacti: Multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200803-18 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...

7.5CVSS7.2AI score0.05246EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2008/02/29 12:0 a.m.11 views

openSUSE 10 Security Update : cacti (cacti-5043)

This update fixes the following vulnerabilities : - multiple XSS vulnerabilities - path disclosure - multiple SQL injections - HTTP response splitting on very old PHP instances %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/02/18 12:0 a.m.23 views

Fedora 8 : cacti-0.8.7b-1.fc8 (2008-1699)

Fixes: XSS vulnerabilities Path disclosure vulnerabilities SQL injection vulnerabilities HTTP response splitting vulnerabilities bug0000855: Unnecessary and faulty DEF generation for CF:AVERAGE bug0001083: Small visual fix for Cacti in 'View Cacti Log File' bug0001089: Graph xport modification to...

7.5CVSS5.4AI score0.05246EPSS
Exploits3References6
Tenable Nessus
Tenable Nessus
added 2008/02/18 12:0 a.m.38 views

Fedora 7 : cacti-0.8.7b-1.fc7 (2008-1737)

XSS vulnerabilities Path disclosure vulnerabilities SQL injection vulnerabilities HTTP response splitting vulnerabilities bug0000855: Unnecessary and faulty DEF generation for CF:AVERAGE bug0001083: Small visual fix for Cacti in 'View Cacti Log File' bug0001089: Graph xport modification to...

7.5CVSS5.7AI score0.05246EPSS
Exploits3References6
UbuntuCve
UbuntuCve
added 2008/02/14 11:0 p.m.14 views

CVE-2008-0786

CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

4.3CVSS6AI score0.01774EPSS
Exploits0References1
NVD
NVD
added 2008/02/14 11:0 p.m.18 views

CVE-2008-0786

CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

4.3CVSS6.8AI score0.01774EPSS
Exploits0References17
Prion
Prion
added 2008/02/14 11:0 p.m.19 views

Crlf injection

CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

4.3CVSS7.4AI score0.01774EPSS
Exploits0References17Affected Software1
OSV
OSV
added 2008/02/14 11:0 p.m.9 views

CVE-2008-0786

CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

6.8AI score
Exploits0References17
Cvelist
Cvelist
added 2008/02/14 10:0 p.m.23 views

CVE-2008-0786

CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

6.7AI score0.01774EPSS
Exploits0References17
Debian CVE
Debian CVE
added 2008/02/14 10:0 p.m.28 views

CVE-2008-0786

CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

4.3CVSS7AI score0.01774EPSS
Exploits0
xssed
xssed
added 2008/02/13 12:0 a.m.10 views

Unfixed HTTP Response Splitting vulnerability at www.mooseek.com

Security researcher kusomiso.com, has submitted on 13/02/2008 a HTTP Response Splitting vulnerability affecting www.mooseek.com, which at the time of submission ranked 126045 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/04/2008. It is...

Exploits0References1
securityvulns
securityvulns
added 2008/02/13 12:0 a.m.36 views

cacti -- Multiple security vulnerabilities have been discovered

Affected packages: cacti 0.8.7b Multiple security vulnerabilities have been discovered in Cacti's web interface: XSS vulnerabilities Path disclosure vulnerabilities SQL injection vulnerabilities HTTP response splitting vulnerabilities References: http://forums.cacti.net/about25749.html -- Mario...

1.4AI score
Exploits0
securityvulns
securityvulns
added 2008/02/13 12:0 a.m.148 views

Cacti 0.8.7a Multiple Vulnerabilities

Cacti 0.8.7a Multiple Vulnerabilities Name Multiple Vulnerabilities in Cacti Systems Affected Cacti 0.8.7a and possibly earlier versions Severity High Impact CVSSv2 High 9/10, vector: AV:N/AC:L/Au:N/C:C/I:P/A:P Vendor http://www.cacti.net/ Advisory...

Exploits0
exploitpack
exploitpack
added 2008/02/12 12:0 a.m.12 views

Cacti 0.8.7 - graph_view.php?filter Cross-Site Scripting

Cacti 0.8.7 - graphview.php?filter Cross-Site Scripting source: https://www.securityfocus.com/bid/27749/info Cacti is prone to multiple unspecified input-validation vulnerabilities, including: - Multiple cross-site scripting vulnerabilities - Multiple SQL-injection vulnerabilities - An HTTP...

Exploits0
exploitpack
exploitpack
added 2008/02/12 12:0 a.m.13 views

Cacti 0.8.7 - tree.php Multiple SQL Injections

Cacti 0.8.7 - tree.php Multiple SQL Injections source: https://www.securityfocus.com/bid/27749/info Cacti is prone to multiple unspecified input-validation vulnerabilities, including: - Multiple cross-site scripting vulnerabilities - Multiple SQL-injection vulnerabilities - An HTTP...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2008/02/12 12:0 a.m.11 views

Cacti 0.8.7 - graph_xport.php?local_graph_id SQL Injection

Cacti 0.8.7 - graphxport.php?localgraphid SQL Injection source: https://www.securityfocus.com/bid/27749/info Cacti is prone to multiple unspecified input-validation vulnerabilities, including: - Multiple cross-site scripting vulnerabilities - Multiple SQL-injection vulnerabilities - An HTTP...

Exploits0
exploitpack
exploitpack
added 2008/02/12 12:0 a.m.14 views

Cacti 0.8.7 - index.phpsql.php?Login Action login_username SQL Injection

Cacti 0.8.7 - index.phpsql.php?Login Action loginusername SQL Injection source: https://www.securityfocus.com/bid/27749/info Cacti is prone to multiple unspecified input-validation vulnerabilities, including: - Multiple cross-site scripting vulnerabilities - Multiple SQL-injection vulnerabilities...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/02/12 12:0 a.m.24 views

Cacti 0.8.7a Multiple Vulnerabilities

Cacti 0.8.7a Multiple Vulnerabilities Name Multiple Vulnerabilities in Cacti Systems Affected Cacti 0.8.7a and possibly earlier versions Severity High Impact CVSSv2 High 9/10, vector: AV:N/AC:L/Au:N/C:C/I:P/A:P Vendor http://www.cacti.net/ Advisory...

0.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/02/12 12:0 a.m.10 views

FreeBSD : cacti -- Multiple security vulnerabilities have been discovered (dea7df85-d96c-11dc-9bfc-000e0c092e7a)

The cacti development team reports : Multiple security vulnerabilities have been discovered in Cacti's web interface : - XSS vulnerabilities - Path disclosure vulnerabilities - SQL injection vulnerabilities - HTTP response splitting vulnerabilities %NASLMINLEVEL 70300 C Tenable Network Security,...

5.6AI score
Exploits0References2
Exploit DB
Exploit DB
added 2008/02/12 12:0 a.m.42 views

Cacti 0.8.7 - 'graph_xport.php?local_graph_id' SQL Injection

source: https://www.securityfocus.com/bid/27749/info Cacti is prone to multiple unspecified input-validation vulnerabilities, including: - Multiple cross-site scripting vulnerabilities - Multiple SQL-injection vulnerabilities - An HTTP response-splitting vulnerability. Attackers may exploit these...

7.4AI score
Exploits0
Rows per page
Query Builder