Fedora: Security Advisory for cacti (FEDORA-2024-27a594f71d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GHSA-4V5G-8PQ2-32M2 By-passing Protection of PharStreamWrapper Interceptor

Insecure deserialization is a vulnerability which occurs when untrusted data is used to abuse the logic of an application. In July 2018, the vulnerability of insecure deserialization when executing Phar archives was addressed by removing the known attack vector in the TYPO3 core. For more details...

[SECURITY] Fedora 36 Update: cacti-1.2.20-1.fc36

Cacti is a complete frontend to RRDTool. It stores all of the necessary information to create graphs and populate them with data in a MySQL database. The frontend is completely PHP driven...

Fedora: Security Advisory for cacti (FEDORA-2021-0b8814db99)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 33 Update: cacti-1.2.19-1.fc33

Cacti is a complete frontend to RRDTool. It stores all of the necessary information to create graphs and populate them with data in a MySQL database. The frontend is completely PHP driven...

Fedora: Security Advisory for cacti (FEDORA-2021-598b6d2924)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 31 Update: cacti-1.2.10-1.fc31

Cacti is a complete frontend to RRDTool. It stores all of the necessary information to create graphs and populate them with data in a MySQL database. The frontend is completely PHP driven...

Fedora Update for cacti FEDORA-2019-362f0e9710

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Serious Phar Flaw Allows Arbitrary Code Execution on Drupal

Multiple content management systems – including Drupal, Joomla and Typo3 – are open to a vulnerability that can lead to arbitrary code execution on some systems. The flaw CVE-2019-11831 exists in the phar stream wrapper component used in PHP-driven projects. A Phar archive is used to distribute a...

Debian Security Advisory DSA 3312-1 (cacti - security update)

Multiple SQL injection vulnerabilities were discovered in cacti, a web interface for graphing of monitoring systems. OpenVAS Vulnerability Test $Id: deb3312.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory DSA 3312-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone...

Debian Security Advisory DSA 3007-1 (cacti - security update)

Multiple security issues cross-site scripting, missing input sanitising and SQL injection have been discovered in Cacti, a web interface for graphing of monitoring systems. OpenVAS Vulnerability Test $Id: deb3007.nasl 6750 2017-07-18 09:56:47Z teissa $ Auto-generated from advisory DSA 3007-1 usin...

Debian Security Advisory DSA 2970-1 (cacti - security update)

Multiple security issues cross-site scripting, cross-site request forgery, SQL injections, missing input sanitising have been found in Cacti, a web frontend for RRDTool. OpenVAS Vulnerability Test $Id: deb2970.nasl 6692 2017-07-12 09:57:43Z teissa $ Auto-generated from advisory DSA 2970-1 using...

Debian Security Advisory DSA 2739-1 (cacti - several vulnerabilities)

Two security issues SQL injection and command line injection via SNMP settings were found in Cacti, a web interface for graphing of monitoring systems. OpenVAS Vulnerability Test $Id: deb2739.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2739-1 using nvtgen 1.0 Script...

[SECURITY] Fedora 13 Update: cacti-0.8.7f-1.fc13

Cacti is a complete frontend to RRDTool. It stores all of the necessary information to create graphs and populate them with data in a MySQL database. The frontend is completely PHP driven. Along with being able to maintain graphs, data sources, and round robin archives in a database, Cacti also...

[SECURITY] Fedora 11 Update: cacti-0.8.7e-3.fc11

Cacti is a complete frontend to RRDTool. It stores all of the necessary information to create graphs and populate them with data in a MySQL database. The frontend is completely PHP driven. Along with being able to maintain graphs, data sources, and round robin archives in a database, Cacti also...

Ubuntu 4.10 : libgd2 vulnerabilities (USN-11-1)

Several buffer overflows have been discovered in libgd's PNG handling functions. If an attacker tricked a user into loading a malicious PNG image, they could leverage this into executing arbitrary code in the context of the user opening image. Most importantly, this library is commonly used in PH...

USN-21-1: libgd vulnerabilities

Several buffer overflows have been discovered in libgd's PNG handling functions. If an attacker tricked a user into loading a malicious PNG image, they could leverage this into executing arbitrary code in the context of the user opening image. Most importantly, this library is commonly used in PH...

SQL Injection in CACTI

///////////////////////////////////////////////////// //// Vulnerable Program: CACTI //// //// Version : The latest version 0.8.5a //// //// Url: http://www.raxnet.net //// //// The Bug: SQL injection to allows bypass the auth. //// //// Date: Today, August 16 off 2004 //// //// Author: Fernando...