Lucene search

K

Cacti Security Vulnerabilities

cve
cve

CVE-2023-31132

Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a privilege escalation vulnerability. A low-privileged OS user with access to a Windows host where Cacti is installed can create arbitrary PHP files in a web document directory. The user....

7.8CVSS

8.9AI Score

0.001EPSS

2023-09-05 10:15 PM
57
cve
cve

CVE-2023-30534

Cacti is an open source operational monitoring and fault management framework. There are two instances of insecure deserialization in Cacti version 1.2.24. While a viable gadget chain exists in Cacti’s vendor directory (phpseclib), the necessary gadgets are not included, making them inaccessible...

4.3CVSS

6.7AI Score

0.093EPSS

2023-09-05 10:15 PM
51
cve
cve

CVE-2020-8813

graph_realtime.php in Cacti 1.2.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in a cookie, if a guest user has the graph real-time...

8.8CVSS

8.8AI Score

0.921EPSS

2020-02-22 02:15 AM
294
5
cve
cve

CVE-2023-39511

Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting (XSS) Vulnerability which allows an authenticated user to poison data stored in the cacti's database. These data will be viewed by administrative cacti...

6.1CVSS

6.3AI Score

0.001EPSS

2023-09-06 06:15 PM
76
cve
cve

CVE-2023-39358

Cacti is an open source operational monitoring and fault management framework. An authenticated SQL injection vulnerability was discovered which allows authenticated users to perform privilege escalation and remote code execution. The vulnerability resides in the reports_user.php file. In...

8.8CVSS

9.5AI Score

0.001EPSS

2023-09-05 10:15 PM
20
cve
cve

CVE-2020-7106

Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in data_sources.php (a raw string from the database that is displayed by $header to.....

6.1CVSS

6.7AI Score

0.018EPSS

2020-01-16 04:15 AM
213
3
cve
cve

CVE-2022-48538

In Cacti 1.2.19, there is an authentication bypass in the web login functionality because of improper validation in the PHP code: cacti_ldap_auth() allows a zero as the...

5.3CVSS

5.8AI Score

0.0004EPSS

2023-08-22 07:16 PM
20
cve
cve

CVE-2022-48547

A reflected cross-site scripting (XSS) vulnerability in Cacti 0.8.7g and earlier allows unauthenticated remote attackers to inject arbitrary web script or HTML in the "ref" parameter at...

6.1CVSS

6AI Score

0.001EPSS

2023-08-22 07:16 PM
14
cve
cve

CVE-2022-41444

Cross Site Scripting (XSS) vulnerability in Cacti 1.2.21 via crafted POST request to...

6.1CVSS

5.9AI Score

0.0005EPSS

2023-08-22 07:16 PM
24
cve
cve

CVE-2020-23226

Multiple Cross Site Scripting (XSS) vulneratiblities exist in Cacti 1.2.12 in (1) reports_admin.php, (2) data_queries.php, (3) data_input.php, (4) graph_templates.php, (5) graphs.php, (6) reports_admin.php, and (7)...

6.1CVSS

6AI Score

0.001EPSS

2021-08-27 06:15 PM
55
2
cve
cve

CVE-2010-2545

Multiple cross-site scripting (XSS) vulnerabilities in Cacti before 0.8.7g, as used in Red Hat High Performance Computing (HPC) Solution and other products, allow remote attackers to inject arbitrary web script or HTML via (1) the name element in an XML template to templates_import.php; and allow.....

5.2AI Score

0.001EPSS

2010-08-23 10:00 PM
40
cve
cve

CVE-2010-2544

Cross-site scripting (XSS) vulnerability in utilities.php in Cacti before 0.8.7g, as used in Red Hat High Performance Computing (HPC) Solution and other products, allows remote attackers to inject arbitrary web script or HTML via the filter...

5.5AI Score

0.023EPSS

2010-08-23 10:00 PM
40
cve
cve

CVE-2009-4032

Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.7e allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) graph.php, (2) include/top_graph_header.php, (3) lib/html_form.php, and (4) lib/timespan_settings.php, as demonstrated by the (a) graph_end...

5.4AI Score

0.023EPSS

2009-11-29 01:07 PM
45
cve
cve

CVE-2010-1644

Multiple cross-site scripting (XSS) vulnerabilities in Cacti before 0.8.7f, as used in Red Hat High Performance Computing (HPC) Solution and other products, allow remote attackers to inject arbitrary web script or HTML via the (1) hostname or (2) description parameter to host.php, or (3) the...

5.5AI Score

0.003EPSS

2010-08-23 10:00 PM
40
cve
cve

CVE-2022-0730

Under certain ldap conditions, Cacti authentication can be bypassed with certain credential...

9.8CVSS

9.4AI Score

0.004EPSS

2022-03-03 11:15 PM
120
cve
cve

CVE-2017-16660

Cacti 1.1.27 allows remote authenticated administrators to conduct Remote Code Execution attacks by placing the Log Path under the web root, and then making a remote_agent.php request containing PHP code in a Client-ip...

7.2CVSS

6.9AI Score

0.002EPSS

2022-10-03 04:23 PM
30
cve
cve

CVE-2017-16661

Cacti 1.1.27 allows remote authenticated administrators to read arbitrary files by placing the Log Path into a private directory, and then making a clog.php?filename= request, as demonstrated by filename=passwd (with a Log Path under /etc) to read...

4.9CVSS

5.5AI Score

0.001EPSS

2022-10-03 04:23 PM
30
cve
cve

CVE-2017-16641

lib/rrd.php in Cacti 1.1.27 allows remote authenticated administrators to execute arbitrary OS commands via the path_rrdtool parameter in an action=save request to...

7.2CVSS

7AI Score

0.007EPSS

2022-10-03 04:23 PM
28
cve
cve

CVE-2021-23225

Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary web script or HTML in the "new_username" field during creation of a new user via "Copy" method at...

5.4CVSS

5.5AI Score

0.001EPSS

2022-01-19 09:15 PM
36
cve
cve

CVE-2021-26247

As an unauthenticated remote user, visit "http:///auth_changepassword.php?ref=alert(1)" to successfully execute the JavaScript payload present in the "ref" URL...

6.1CVSS

6.4AI Score

0.003EPSS

2022-01-19 09:15 PM
34
cve
cve

CVE-2021-3816

Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via "Copy" method at...

5.4CVSS

5.2AI Score

0.001EPSS

2022-01-19 09:15 PM
35
cve
cve

CVE-2020-14424

Cacti before 1.2.18 allows remote attackers to trigger XSS via template import for the midwinter...

6.1CVSS

6AI Score

0.001EPSS

2021-11-14 08:15 PM
49
cve
cve

CVE-2019-17357

Cacti through 1.2.7 is affected by a graphs.php?template_id= SQL injection vulnerability affecting how template identifiers are handled when a string and id composite value are used to identify the template type and id. An authenticated attacker can exploit this to extract data from the database,.....

6.5CVSS

7.5AI Score

0.105EPSS

2020-01-21 07:15 PM
140
cve
cve

CVE-2019-17358

Cacti through 1.2.7 is affected by multiple instances of lib/functions.php unsafe deserialization of user-controlled data to populate arrays. An authenticated attacker could use this to influence object data values and control actions taken by Cacti or potentially cause memory corruption in the...

8.1CVSS

8AI Score

0.007EPSS

2019-12-12 02:15 PM
150
cve
cve

CVE-2019-11025

In clearFilter() in utilities.php in Cacti before 1.2.3, no escaping occurs before printing out the value of the SNMP community string (SNMP Options) in the View poller cache, leading to...

5.4CVSS

5.5AI Score

0.001EPSS

2019-04-08 11:29 PM
38
2
cve
cve

CVE-2018-20726

A cross-site scripting (XSS) vulnerability exists in host.php (via tree.php) in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Website Hostname field for...

5.4CVSS

6.1AI Score

0.001EPSS

2019-01-16 04:29 PM
113
cve
cve

CVE-2018-20725

A cross-site scripting (XSS) vulnerability exists in graph_templates.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Graph Vertical...

4.8CVSS

5.8AI Score

0.001EPSS

2019-01-16 04:29 PM
116
cve
cve

CVE-2018-20723

A cross-site scripting (XSS) vulnerability exists in color_templates.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Name field for a...

4.8CVSS

5.8AI Score

0.001EPSS

2019-01-16 04:29 PM
117
cve
cve

CVE-2018-20724

A cross-site scripting (XSS) vulnerability exists in pollers.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Website Hostname for Data...

4.8CVSS

5.8AI Score

0.001EPSS

2019-01-16 04:29 PM
115
cve
cve

CVE-2018-10060

Cacti before 1.1.37 has XSS because it does not properly reject unintended characters, related to use of the sanitize_uri function in...

5.4CVSS

5.4AI Score

0.001EPSS

2018-04-12 04:29 PM
32
2
cve
cve

CVE-2018-10059

Cacti before 1.1.37 has XSS because the get_current_page function in lib/functions.php relies on $_SERVER['PHP_SELF'] instead of $_SERVER['SCRIPT_NAME'] to determine a page...

5.4CVSS

5.1AI Score

0.001EPSS

2018-04-12 04:29 PM
24
cve
cve

CVE-2018-10061

Cacti before 1.1.37 has XSS because it makes certain htmlspecialchars calls without the ENT_QUOTES flag (these calls occur when the html_escape function in lib/html.php is not...

5.4CVSS

5.4AI Score

0.001EPSS

2018-04-12 04:29 PM
26
cve
cve

CVE-2016-10700

auth_login.php in Cacti before 1.0.0 allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database, because the guest user is not considered. NOTE: this vulnerability exists because of an incomplete fix for...

8.8CVSS

8.5AI Score

0.004EPSS

2017-11-24 05:29 AM
22
cve
cve

CVE-2014-4000

Cacti before 1.0.0 allows remote authenticated users to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object, related to calling...

8.8CVSS

8.5AI Score

0.003EPSS

2017-11-15 04:29 PM
31
cve
cve

CVE-2017-16785

Cacti 1.1.27 has reflected XSS via the PATH_INFO to...

6.1CVSS

6AI Score

0.001EPSS

2017-11-10 11:29 PM
25
cve
cve

CVE-2017-15194

include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh...

6.1CVSS

5.7AI Score

0.001EPSS

2017-10-11 01:32 AM
27
cve
cve

CVE-2017-12978

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated...

5.4CVSS

5.3AI Score

0.001EPSS

2017-08-21 07:29 AM
25
cve
cve

CVE-2017-12927

A cross-site scripting vulnerability exists in Cacti 1.1.17 in the method parameter in...

6.1CVSS

5.7AI Score

0.009EPSS

2017-08-18 02:29 AM
27
cve
cve

CVE-2017-12066

Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in Cacti before 1.1.16 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancel_url variable. NOTE: this vulnerability exists because of an incomplete....

5.4CVSS

6.4AI Score

0.001EPSS

2017-08-01 05:29 AM
32
cve
cve

CVE-2017-12065

spikekill.php in Cacti before 1.1.16 might allow remote attackers to execute arbitrary code via the avgnan, outlier-start, or outlier-end...

9.8CVSS

9.6AI Score

0.032EPSS

2017-08-01 05:29 AM
34
cve
cve

CVE-2017-11691

Cross-site scripting (XSS) vulnerability in auth_profile.php in Cacti 1.1.13 allows remote attackers to inject arbitrary web script or HTML via specially crafted HTTP Referer...

5.4CVSS

5.4AI Score

0.001EPSS

2017-07-27 06:29 AM
27
cve
cve

CVE-2017-1000031

SQL injection vulnerability in graph_templates_inputs.php in Cacti 0.8.8b allows remote attackers to execute arbitrary SQL commands via the graph_template_input_id and graph_template_id...

8.8CVSS

9.2AI Score

0.001EPSS

2017-07-17 01:18 PM
25
cve
cve

CVE-2017-1000032

Cross-Site scripting (XSS) vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parent_id parameter to tree.php and drp_action parameter to...

6.1CVSS

6.6AI Score

0.001EPSS

2017-07-17 01:18 PM
25
cve
cve

CVE-2017-11163

Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancel_url...

5.4CVSS

5.1AI Score

0.001EPSS

2017-07-10 06:29 PM
23
cve
cve

CVE-2017-10970

Cross-site scripting (XSS) vulnerability in link.php in Cacti 1.1.12 allows remote anonymous users to inject arbitrary web script or HTML via the id parameter, related to the die_html_input_error function in...

5.4CVSS

5.3AI Score

0.001EPSS

2017-07-06 11:29 AM
32
cve
cve

CVE-2016-3172

SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parent_id parameter in an item_edit...

8.8CVSS

8.7AI Score

0.006EPSS

2016-04-12 04:59 PM
68
cve
cve

CVE-2015-8604

SQL injection vulnerability in the host_new_graphs function in graphs_new.php in Cacti 0.8.8f and earlier allows remote authenticated users to execute arbitrary SQL commands via the cg_g parameter in a save...

8.8CVSS

8.7AI Score

0.012EPSS

2016-04-11 09:59 PM
57
cve
cve

CVE-2016-3659

SQL injection vulnerability in graph_view.php in Cacti 0.8.8.g allows remote authenticated users to execute arbitrary SQL commands via the host_group_data...

8.8CVSS

8.7AI Score

0.012EPSS

2016-04-11 03:59 PM
29
cve
cve

CVE-2015-8369

SQL injection vulnerability in include/top_graph_header.php in Cacti 0.8.8f and earlier allows remote attackers to execute arbitrary SQL commands via the rra_id parameter in a properties action to...

8.9AI Score

0.014EPSS

2015-12-17 07:59 PM
50
cve
cve

CVE-2015-8377

SQL injection vulnerability in the host_new_graphs_save function in graphs_new.php in Cacti 0.8.8f and earlier allows remote authenticated users to execute arbitrary SQL commands via crafted serialized data in the selected_graphs_array parameter in a save...

8.7AI Score

0.001EPSS

2015-12-15 09:59 PM
50
Total number of security vulnerabilities143