Cacti

cacti

Vendor: Cacti • 137 CVEs

CVEs (137)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-25706 2Cacti Debian 2Cacti Debian Linux Nov 21, 2024 Nov 12, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 A cross-site scripting (XSS) vulnerability exists in templates_import.php (Cacti 1.2.13) due to Improper escaping of error message during template import preview in the xml_path field
CVE-2020-14295 2Cacti Fedoraproject 2Cacti Fedora Nov 21, 2024 Jun 17, 2020 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 A SQL injection issue in color.php in Cacti 1.2.12 allows an admin to inject SQL via the filter parameter. This can lead to remote command execution because the product accepts stacked queries.
CVE-2020-13231 2Cacti Fedoraproject 2Cacti Fedora Nov 21, 2024 May 20, 2020 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for an admin email change.
CVE-2020-13230 3Cacti DebianFedoraproject 3Cacti Debian LinuxFedora Nov 21, 2024 May 20, 2020 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 In Cacti before 1.2.11, disabling a user account does not immediately invalidate any permissions granted to that account (e.g., permission to view logs).
CVE-2020-8813 5Cacti DebianFedoraproject+2 more 5Cacti Debian LinuxFedora+2 more Nov 21, 2024 Feb 22, 2020 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 graph_realtime.php in Cacti 1.2.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in a cookie, if a guest user has the graph real-time privilege.
CVE-2019-17357 1Cacti 1Cacti Nov 21, 2024 Jan 21, 2020 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Cacti through 1.2.7 is affected by a graphs.php?template_id= SQL injection vulnerability affecting how template identifiers are handled when a string and id composite value are used to identify the template type and id....Show more Cacti through 1.2.7 is affected by a graphs.php?template_id= SQL injection vulnerability affecting how template identifiers are handled when a string and id composite value are used to identify the template type and id. An authenticated attacker can exploit this to extract data from the database, or an unauthenticated remote attacker could exploit this via Cross-Site Request Forgery.Show less
CVE-2020-7237 1Cacti 1Cacti Nov 21, 2024 Jan 20, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The atta...Show more Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance Settings of the product.Show less
CVE-2020-7106 5Cacti DebianFedoraproject+2 more 7Backports Sle CactiDebian Linux+4 more Nov 21, 2024 Jan 16, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in dat...Show more Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in data_sources.php (a raw string from the database that is displayed by $header to trigger the XSS).Show less
CVE-2020-7058 1Cacti 1Cacti Nov 21, 2024 Jan 15, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 data_input.php in Cacti 1.2.8 allows remote code execution via a crafted Input String to Data Collection -> Data Input Methods -> Unix -> Ping Host. NOTE: the vendor has stated "This is a false alarm.
CVE-2019-17358 3Cacti DebianOpensuse 3Cacti Debian LinuxLeap Nov 21, 2024 Dec 12, 2019 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 Cacti through 1.2.7 is affected by multiple instances of lib/functions.php unsafe deserialization of user-controlled data to populate arrays. An authenticated attacker could use this to influence object data values and c...Show more Cacti through 1.2.7 is affected by multiple instances of lib/functions.php unsafe deserialization of user-controlled data to populate arrays. An authenticated attacker could use this to influence object data values and control actions taken by Cacti or potentially cause memory corruption in the PHP module.Show less
CVE-2019-16723 1Cacti 1Cacti Nov 21, 2024 Sep 23, 2019 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 In Cacti through 1.2.6, authenticated users may bypass authorization checks (for viewing a graph) via a direct graph_json.php request with a modified local_graph_id parameter.
CVE-2019-11025 2Cacti Debian 2Cacti Debian Linux Nov 21, 2024 Apr 8, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 In clearFilter() in utilities.php in Cacti before 1.2.3, no escaping occurs before printing out the value of the SNMP community string (SNMP Options) in the View poller cache, leading to XSS.
CVE-2018-20726 1Cacti 1Cacti Nov 21, 2024 Jan 16, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 A cross-site scripting (XSS) vulnerability exists in host.php (via tree.php) in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Website Hostname field for Devices.
CVE-2018-20725 1Cacti 1Cacti Nov 21, 2024 Jan 16, 2019 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 A cross-site scripting (XSS) vulnerability exists in graph_templates.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Graph Vertical Label.
CVE-2018-20724 1Cacti 1Cacti Nov 21, 2024 Jan 16, 2019 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 A cross-site scripting (XSS) vulnerability exists in pollers.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Website Hostname for Data Collectors.
CVE-2018-20723 1Cacti 1Cacti Nov 21, 2024 Jan 16, 2019 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 A cross-site scripting (XSS) vulnerability exists in color_templates.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Name field for a Color.
CVE-2018-10061 2Cacti Debian 2Cacti Debian Linux Nov 21, 2024 Apr 12, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Cacti before 1.1.37 has XSS because it makes certain htmlspecialchars calls without the ENT_QUOTES flag (these calls occur when the html_escape function in lib/html.php is not used).
CVE-2018-10060 2Cacti Debian 2Cacti Debian Linux Nov 21, 2024 Apr 12, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Cacti before 1.1.37 has XSS because it does not properly reject unintended characters, related to use of the sanitize_uri function in lib/functions.php.
CVE-2018-10059 1Cacti 1Cacti Nov 21, 2024 Apr 12, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Cacti before 1.1.37 has XSS because the get_current_page function in lib/functions.php relies on $_SERVER['PHP_SELF'] instead of $_SERVER['SCRIPT_NAME'] to determine a page name.
CVE-2016-10700 1Cacti 1Cacti May 13, 2026 Nov 24, 2017 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 auth_login.php in Cacti before 1.0.0 allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database, because the guest user is not co...Show more auth_login.php in Cacti before 1.0.0 allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database, because the guest user is not considered. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-2313.Show less

Previous 1 2 345 6 7 Next