6 matches found
Cacti < 0.8.6e Multiple Vulnerabilities
According to its self-reported version number, the Cacti application running on the remote web server is prior to version 0.8.6e. It is, therefore, potentially affected by the following vulnerabilities : - A PHP file inclusion vulnerability exists in 'topgraphheader.php' that allows remote...
Gentoo Security Advisory GLSA 200506-20 (cacti)
The remote host is missing updates announced in advisory GLSA 200506-20. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2005-1524
CVE-2005-1524 affects Cacti 0.8.6d and earlier; a PHP file inclusion vulnerability in top_graph_header.php can allow remote code execution via config[library_path]. Related advisories also cover CVE-2005-1525 and CVE-2005-1526 (SQL/inclusion flaws) with patches in later releases. Debian/OSS advis...
CVE-2005-1524
PHP file inclusion vulnerability in topgraphheader.php in Cacti 0.8.6d and possibly earlier versions allows remote attackers to execute arbitrary PHP code via the configlibrarypath parameter...
[Full-disclosure] iDEFENSE Security Advisory 06.22.05: Multiple Vendor Cacti Remote File Inclusion Vulnerability
Multiple Vendor Cacti Remote File Inclusion Vulnerability iDEFENSE Security Advisory 06.22.05 www.idefense.com/application/poi/display?id=265&type=vulnerabilities June 22, 2005 I. BACKGROUND Cacti is a round-robin database RRD tool that helps create graphs from database information and is availab...
Cacti Local File Inclusion Vulnerability
The Cacti application running on the remote web server is affected by a local file inclusion vulnerability due to improperly validating user-supplied input to the 'configincludepath' parameter in 'configsettings.php'. A remote attacker can exploit this to execute arbitrary PHP code. %NASLMINLEVEL...