Описание
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parent_id parameter in an item_edit action.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-apps/xenial | released | 0.8.8f+ds1-4ubuntu4.16.04.2 |
| esm-infra-legacy/trusty | released | 0.8.8b+dfsg-5ubuntu0.2 |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | released | 0.8.8b+dfsg-5ubuntu0.2 |
| trusty/esm | released | 0.8.8b+dfsg-5ubuntu0.2 |
| upstream | released | 0.8.8g+ds1-2 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE |
Показывать по
6.5 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parent_id parameter in an item_edit action.
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier al ...
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parent_id parameter in an item_edit action.
6.5 Medium
CVSS2
8.8 High
CVSS3