[CVE-2015-8604] Cacti SQL injection in graphs_new.php

January 8, 2016 007admin Leave a comment

Posted by changzhao.mao () dbappsecurity com cn on Jan 08

Application: Cacti
Vendor URL: http://www.cacti.net
Bugs: SQL injection
Author:changzhao.mao(DBAPPSecurity Ltd)
Version affected: 0.8.8f and prior
================================
Introduction
================================
Cacti is a complete frontend to RRDTool, it stores all of the necessary information to create graphs and populate
them with data in a MySQL database. The frontend is completely PHP driven. Along with being able to…

007 Software

[CVE-2015-8604] Cacti SQL injection in graphs_new.php

Leave a Reply Cancel reply

Software and Security Information