Cacti: SQL injection vulnerability
| Package(s): | cacti | CVE #(s): | |||||||||
| Created: | August 23, 2004 | Updated: | August 25, 2004 | ||||||||
| Description: | Cacti is vulnerable to a SQL injection attack where an attacker may inject SQL into the Username field. An attacker could use these vulnerabilities to compromise the Cacti service and potentially execute programs with the permissions of the user running Cacti. | ||||||||||
| Alerts: |
| ||||||||||