5 matches found
SUSE CVE-2016-2313
authlogin.php in Cacti before 0.8.8g allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database...
SUSE CVE-2016-3172
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parentid parameter in an itemedit action...
Cacti <= 0.8.8f Multiple Vulnerabilities - Windows
Cacti is prone to multiple vulnerabilities. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Cacti Security Bypass Vulnerability
Cacti is a suite of open source network traffic monitoring and analysis tools from the Cacti Group. A security bypass vulnerability exists in the authlogin.php file in versions of Cacti prior to 0.8.8g, which can be exploited by a remote attacker to bypass established access restrictions by loggi...
Cacti SQL Injection Vulnerability (CNVD-2016-02028)
Cacti is a suite of open source network traffic monitoring and analysis tools from the Cacti Group. The tool through snmpget to get the data , using RRDtool drawing graphs for analysis , and provide data and user management functions . A SQL injection vulnerability exists in Cacti 0.8.8g and prio...