7.5
CVE-2004-1737
- EPSS 3.2%
- Veröffentlicht 16.08.2004 04:00:00
- Zuletzt bearbeitet 16.04.2026 00:27:16
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in auth_login.php in Cacti 0.8.5a allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password parameters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
The Cacti Group ≫ Cacti Version0.6
The Cacti Group ≫ Cacti Version0.6.1
The Cacti Group ≫ Cacti Version0.6.2
The Cacti Group ≫ Cacti Version0.6.3
The Cacti Group ≫ Cacti Version0.6.4
The Cacti Group ≫ Cacti Version0.6.5
The Cacti Group ≫ Cacti Version0.6.6
The Cacti Group ≫ Cacti Version0.6.7
The Cacti Group ≫ Cacti Version0.6.8
The Cacti Group ≫ Cacti Version0.6.8a
The Cacti Group ≫ Cacti Version0.8
The Cacti Group ≫ Cacti Version0.8.1
The Cacti Group ≫ Cacti Version0.8.2
The Cacti Group ≫ Cacti Version0.8.2a
The Cacti Group ≫ Cacti Version0.8.3
The Cacti Group ≫ Cacti Version0.8.3a
The Cacti Group ≫ Cacti Version0.8.4
The Cacti Group ≫ Cacti Version0.8.5
The Cacti Group ≫ Cacti Version0.8.5a
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.2% | 0.866 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|