5 matches found
Cacti < 0.8.6e Multiple Vulnerabilities
According to its self-reported version number, the Cacti application running on the remote web server is prior to version 0.8.6e. It is, therefore, potentially affected by the following vulnerabilities : - A PHP file inclusion vulnerability exists in 'topgraphheader.php' that allows remote...
Gentoo Security Advisory GLSA 200506-20 (cacti)
The remote host is missing updates announced in advisory GLSA 200506-20. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2005-1525
CVE-2005-1525 is an SQL injection vulnerability in Cacti prior to 0.8.6e. The issue affects the config_settings.php file, where the id parameter allows remote attackers to execute arbitrary SQL commands. This is a remote code execution risk through database manipulation resulting from improper in...
CVE-2005-1525
SQL injection vulnerability in configsettings.php for Cacti before 0.8.6e allows remote attackers to execute arbitrary SQL commands via the id parameter...
Cacti Local File Inclusion Vulnerability
The Cacti application running on the remote web server is affected by a local file inclusion vulnerability due to improperly validating user-supplied input to the 'configincludepath' parameter in 'configsettings.php'. A remote attacker can exploit this to execute arbitrary PHP code. %NASLMINLEVEL...