Cacti < 0.8.6f Multiple Vulnerabilities

According to its self-reported version number, the Cacti application running on the remote web server is prior to version 0.8.6f. It is, therefore, potentially affected by the following vulnerabilities : - Multiple vulnerabilities exist due to improper input validation in 'graphimage.php' and...

FreeBSD Ports: cacti

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2005-2148

CVE-2005-2148 affects Cacti 0.8.6e and earlier. The issue is improper input validation in graph_image.php and graph.php, allowing remote attackers to manipulate $_REQUEST by sending a legitimate POST/cookie value and placing the attack string in the URL, potentially enabling arbitrary commands or...

CVE-2005-2148

Cacti 0.8.6e and earlier does not perform proper input validation to protect against common attacks, which allows remote attackers to execute arbitrary commands or SQL by sending a legitimate value in a POST request or cookie, then specifying the attack string in the URL, which causes the...