SUSE CVE-2010-1431

SQL injection vulnerability in templatesexport.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the exportitemid parameter...

Cacti <= 0.8.7e - SQL Injection

No description provided by source. he following is a Proof of Concept POST request: POST /cacti-0.8.7e/templatesexport.php HTTP/1.1 Host: 192.168.1.107 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0...

Sql injection

SQL injection vulnerability in templatesexport.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the exportitemid parameter...

CVE-2010-1431

SQL injection vulnerability in templatesexport.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the exportitemid parameter...

CVE-2010-1431

The CVE-2010-1431 entry affects Cacti up to version 0.8.7e, where templates_export.php is vulnerable to SQL injection via the export_item_id parameter. This allows remote attackers to execute arbitrary SQL commands against the database. Multiple advisories confirm the issue and patches exist (e.g...

Cacti 0.8.7e - SQL Injection

Cacti 0.8.7e - SQL Injection CVSSv2 Score: 9 AV:N/AC:L/Au:S/C:C/I:C/A:C A Vulnerability has been discovered in Cacti, which can be exploited by any user to conduct SQL Injection attacks. Input passed via the “exportitemid” parameter to “templatesexport.php” script is not properly sanitized before...