7.5
CVE-2004-1737
- EPSS 3.85%
- Published 16.08.2004 04:00:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
SQL injection vulnerability in auth_login.php in Cacti 0.8.5a allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password parameters.
Data is provided by the National Vulnerability Database (NVD)
The Cacti Group ≫ Cacti Version0.6
The Cacti Group ≫ Cacti Version0.6.1
The Cacti Group ≫ Cacti Version0.6.2
The Cacti Group ≫ Cacti Version0.6.3
The Cacti Group ≫ Cacti Version0.6.4
The Cacti Group ≫ Cacti Version0.6.5
The Cacti Group ≫ Cacti Version0.6.6
The Cacti Group ≫ Cacti Version0.6.7
The Cacti Group ≫ Cacti Version0.6.8
The Cacti Group ≫ Cacti Version0.6.8a
The Cacti Group ≫ Cacti Version0.8
The Cacti Group ≫ Cacti Version0.8.1
The Cacti Group ≫ Cacti Version0.8.2
The Cacti Group ≫ Cacti Version0.8.2a
The Cacti Group ≫ Cacti Version0.8.3
The Cacti Group ≫ Cacti Version0.8.3a
The Cacti Group ≫ Cacti Version0.8.4
The Cacti Group ≫ Cacti Version0.8.5
The Cacti Group ≫ Cacti Version0.8.5a
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.85% | 0.877 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|