Cacti

Cacti

155 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 0.99%
  • Veröffentlicht 20.05.2020 14:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:50

In Cacti before 1.2.11, disabling a user account does not immediately invalidate any permissions granted to that account (e.g., permission to view logs).

Exploit
  • EPSS 0.85%
  • Veröffentlicht 20.05.2020 14:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:51

In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for an admin email change.

Exploit
  • EPSS 73.78%
  • Veröffentlicht 22.02.2020 02:15:10
  • Zuletzt bearbeitet 21.11.2024 05:39:29

graph_realtime.php in Cacti 1.2.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in a cookie, if a guest user has the graph real-time privilege.

  • EPSS 35.04%
  • Veröffentlicht 21.01.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:32:09

Cacti through 1.2.7 is affected by a graphs.php?template_id= SQL injection vulnerability affecting how template identifiers are handled when a string and id composite value are used to identify the template type and id. An authenticated attacker can ...

Exploit
  • EPSS 36.82%
  • Veröffentlicht 20.01.2020 05:15:11
  • Zuletzt bearbeitet 21.11.2024 05:36:53

Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, an...

Exploit
  • EPSS 2.14%
  • Veröffentlicht 16.01.2020 04:15:11
  • Zuletzt bearbeitet 21.11.2024 05:36:38

Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in data_sources.php (a raw string fr...

Exploit
  • EPSS 2.25%
  • Veröffentlicht 15.01.2020 07:15:12
  • Zuletzt bearbeitet 21.11.2024 05:36:35

data_input.php in Cacti 1.2.8 allows remote code execution via a crafted Input String to Data Collection -> Data Input Methods -> Unix -> Ping Host. NOTE: the vendor has stated "This is a false alarm.

Exploit
  • EPSS 3.01%
  • Veröffentlicht 12.12.2019 14:15:16
  • Zuletzt bearbeitet 21.11.2024 04:32:10

Cacti through 1.2.7 is affected by multiple instances of lib/functions.php unsafe deserialization of user-controlled data to populate arrays. An authenticated attacker could use this to influence object data values and control actions taken by Cacti ...

  • EPSS 1.47%
  • Veröffentlicht 23.09.2019 15:15:10
  • Zuletzt bearbeitet 21.11.2024 04:31:03

In Cacti through 1.2.6, authenticated users may bypass authorization checks (for viewing a graph) via a direct graph_json.php request with a modified local_graph_id parameter.

Exploit
  • EPSS 1.33%
  • Veröffentlicht 08.04.2019 23:29:00
  • Zuletzt bearbeitet 21.11.2024 04:20:23

In clearFilter() in utilities.php in Cacti before 1.2.3, no escaping occurs before printing out the value of the SNMP community string (SNMP Options) in the View poller cache, leading to XSS.