Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2016/03/25 12:0 a.m.39 views

Amazon Linux AMI : cacti (ALAS-2016-673)

Various cross-site scripting XSS flaws CVE-2013-5588 , CVE-2014-5025 , CVE-2014-5026 and various SQL injection flaws CVE-2013-5589 , CVE-2015-4342 , CVE-2015-4634 , CVE-2015-8377 , CVE-2015-8604 were discovered affecting versions of Cacti prior to 0.8.8g. Cross-site scripting XSS vulnerability in...

8.8CVSS8AI score0.03227EPSS
Exploits7References11
Amazon
Amazon
added 2016/03/24 12:0 a.m.63 views

Medium: cacti

Issue Overview: Various cross-site scripting XSS flaws CVE-2013-5588, CVE-2014-5025, CVE-2014-5026 and various SQL injection flaws CVE-2013-5589, CVE-2015-4342, CVE-2015-4634, CVE-2015-8377, CVE-2015-8604 were discovered affecting versions of Cacti prior to 0.8.8g. Cross-site scripting XSS...

8.8CVSS8.6AI score0.03227EPSS
Exploits7
OSV
OSV
added 2015/08/11 2:59 p.m.5 views

CVE-2015-4634

SQL injection vulnerability in graphs.php in Cacti before 0.8.8e allows remote attackers to execute arbitrary SQL commands via the localgraphid parameter...

9.1AI score
Exploits0References5
CVE
CVE
added 2015/08/11 2:0 p.m.129 views

CVE-2015-4634

CVE-2015-4634 is a SQL injection vulnerability in Cacti’s graphs.php. The issue allows remote attackers to execute arbitrary SQL commands via the local_graph_id parameter in versions prior to 0.8.8e. Public advisories (openSUSE-2015-510, ALAS-2016-673, Debian DSA-3312, CNVD/CVE records) confirm t...

7.5CVSS9AI score0.02178EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2015/08/11 2:0 p.m.31 views

CVE-2015-4634

SQL injection vulnerability in graphs.php in Cacti before 0.8.8e allows remote attackers to execute arbitrary SQL commands via the localgraphid parameter...

9.1AI score0.02178EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2015/08/11 2:0 p.m.26 views

CVE-2015-4634

SQL injection vulnerability in graphs.php in Cacti before 0.8.8e allows remote attackers to execute arbitrary SQL commands via the localgraphid parameter...

7.5CVSS9.2AI score0.02178EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/07/27 12:0 a.m.37 views

openSUSE Security Update : cacti (openSUSE-2015-510)

Cacti was updated to 0.8.8e to fix several security issues. The following vulnerabilities were fixed : - Multiple XSS and SQL injection vulnerabilities boo937997 - CVE-2015-4634: SQL injection in graphs.php boo937997 In addition, this update contains upstream bug fixes. %NASLMINLEVEL 70300 C...

7.5CVSS7.9AI score0.02178EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/07/23 12:0 a.m.32 views

Debian DSA-3312-1 : cacti - security update

Multiple SQL injection vulnerabilities were discovered in cacti, a web interface for graphing of monitoring systems. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-3312. The text itself i...

7.5CVSS8.1AI score0.02178EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2015/07/21 12:0 a.m.34 views

FreeBSD : cacti -- Multiple XSS and SQL injection vulnerabilities (0bfda05f-2e6f-11e5-a4a5-002590263bf5)

The Cacti Group, Inc. reports : Important Security Fixes - Multiple XSS and SQL injection vulnerabilities - CVE-2015-4634 - SQL injection in graphs.php Changelog - bug: Fixed various SQL Injection vectors - bug0002574: SQL Injection Vulnerabilities in graph items and graph template items -...

7.5CVSS8.2AI score0.02178EPSS
Exploits1References5
Rows per page
Query Builder