Описание
Cacti 0.8.5a allows remote attackers to gain sensitive information via an HTTP request to (1) auth.php, (2) auth_login.php, (3) auth_changepassword.php, and possibly other php files, which reveal the installation path in a PHP error message.
Ссылки
- Exploit
- Exploit
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:the_cacti_group:cacti:0.8.5a:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00477
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
больше 20 лет назад
Cacti 0.8.5a allows remote attackers to gain sensitive information via ...
github
больше 3 лет назад
Cacti 0.8.5a allows remote attackers to gain sensitive information via an HTTP request to (1) auth.php, (2) auth_login.php, (3) auth_changepassword.php, and possibly other php files, which reveal the installation path in a PHP error message.
EPSS
Процентиль: 64%
0.00477
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other