2 matches found
EUVD-2022-6382
Malicious code in bioql PyPI...
The vulnerability of the import_package() function (lib/import.php) in the Cacti network monitoring software allows a attacker to execute arbitrary PHP code.
The vulnerability of the importpackage function lib/import.php in the Cacti network monitoring software exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary PHP code using a specially crafted XML file...