Showing 1 - 5 of 5

CVE-2008-0785

Status Candidate

Overview

Multiple SQL injection vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote authenticated users to execute arbitrary SQL commands via the (1) graph_list parameter to graph_view.php, (2) leaf_id and id parameters to tree.php, (3) local_graph_id parameter to graph_xport.php, and (4) login_username parameter to index.php/login.

Related Files

Debian Linux Security Advisory 1569-3: Posted Jul 16, 2008; Authored by Debian | Site debian.org; Debian Security Advisory 1569-3 - Since the previous security update, the cacti package could no longer be rebuilt from the source package. This update corrects that problem. Note that this problem does not affect regular use of the provided binary packages (.deb).; tags | advisory; systems | linux, debian; advisories | CVE-2008-0783, CVE-2008-0785; SHA-256 | dc36fff9689e4aaf063e726c1168b13fa138e673807e06ed013c70027925613e; Download | Favorite | View

Debian Linux Security Advisory 1569-2: Posted May 6, 2008; Authored by Debian | Site debian.org; Debian Security Advisory 1569-2 - The original update for cacti unfortunately introduced a regression. Updated packages have been created to address this. It was discovered that Cacti, a systems and services monitoring frontend, performed insufficient input sanitising, leading to cross site scripting and SQL injection being possible.; tags | advisory, xss, sql injection; systems | linux, debian; advisories | CVE-2008-0783, CVE-2008-0785; SHA-256 | a25d71e2a484bbe0525e22985604072f8a0b56a19f2fc79a50227fb2af5045fc; Download | Favorite | View

Debian Linux Security Advisory 1569-1: Posted May 5, 2008; Authored by Debian | Site debian.org; Debian Security Advisory 1569-1 - It was discovered that Cacti, a systems and services monitoring frontend, performed insufficient input sanitizing, leading to cross site scripting and SQL injection being possible.; tags | advisory, xss, sql injection; systems | linux, debian; advisories | CVE-2008-0783, CVE-2008-0785; SHA-256 | a15748a6e26762a361015640d77f7b3ebb8ef1199a358015d04400e2751b1fda; Download | Favorite | View

Gentoo Linux Security Advisory 200803-18: Posted Mar 13, 2008; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory GLSA 200803-18 - Multiple vulnerabilities were discovered in Cacti. Versions less than 0.8.7b are affected.; tags | advisory, vulnerability; systems | linux, gentoo; advisories | CVE-2008-0783, CVE-2008-0784, CVE-2008-0785, CVE-2008-0786; SHA-256 | 5d50dc8b0f98c436ce06069183ead19d0184212e2bf9f597effa4f50f1c1da86; Download | Favorite | View

Mandriva Linux Security Advisory 2008-052: Posted Feb 28, 2008; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory - A number of vulnerabilities were found in the Cacti program, including XSS vulnerabilities, SQL injection vulnerabilities, CRLF injection vulnerabilities, and information disclosure vulnerabilities.; tags | advisory, vulnerability, sql injection, info disclosure; systems | linux, mandriva; advisories | CVE-2008-0783, CVE-2008-0783, CVE-2008-0785, CVE-2008-0786; SHA-256 | 5fe42dda08bebbfce4119cc05d5717063b08de50a5bb53e8b466237a3065a788; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 294 files
Ubuntu 64 files
Debian 24 files
Apple 14 files
LiquidWorm 12 files
Gentoo 8 files
Google Security Research 4 files
Andrey Stoykov 3 files
Jann Horn 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,171)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,070)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,426)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,010)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2008-0785

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems