CVE-2011-5223

Published: Oct 25, 2012Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site request forgery (CSRF) vulnerability in logout.php in Cacti before 0.8.7i allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Affected (39)

Products: Cacti: Cacti

Cacti

1 product

Cacti

Configuration A

39 vulnerable

Vulnerable Software	Affected Versions
Cacti Cacti	Up to 0.8.7h
Cacti Cacti	Version 0.5
Cacti Cacti	Version 0.6.1
Cacti Cacti	Version 0.6.2
Cacti Cacti	Version 0.6.3
Cacti Cacti	Version 0.6.4
Cacti Cacti	Version 0.6.5
Cacti Cacti	Version 0.6.6
Cacti Cacti	Version 0.6.7
Cacti Cacti	Version 0.6.8
Cacti Cacti	Version 0.6.8a
Cacti Cacti	Version 0.6
Cacti Cacti	Version 0.8.1
Cacti Cacti	Version 0.8.2
Cacti Cacti	Version 0.8.3
Cacti Cacti	Version 0.8.3a
Cacti Cacti	Version 0.8.4
Cacti Cacti	Version 0.8.5
Cacti Cacti	Version 0.8.5a
Cacti Cacti	Version 0.8.6
Cacti Cacti	Version 0.8.6a
Cacti Cacti	Version 0.8.6b
Cacti Cacti	Version 0.8.6c
Cacti Cacti	Version 0.8.6d
Cacti Cacti	Version 0.8.6f
Cacti Cacti	Version 0.8.6g
Cacti Cacti	Version 0.8.6h
Cacti Cacti	Version 0.8.6i
Cacti Cacti	Version 0.8.6j
Cacti Cacti	Version 0.8.6k
Cacti Cacti	Version 0.8.7
Cacti Cacti	Version 0.8.7a
Cacti Cacti	Version 0.8.7b
Cacti Cacti	Version 0.8.7c
Cacti Cacti	Version 0.8.7d
Cacti Cacti	Version 0.8.7e
Cacti Cacti	Version 0.8.7f
Cacti Cacti	Version 0.8.7g
Cacti Cacti	Version 0.8