Vulnerabilities > Cacti

DATE CVE VULNERABILITY TITLE RISK
2025-02-12 CVE-2025-26520 Unspecified vulnerability in Cacti 1.2.27/1.2.28
Cacti through 1.2.29 allows SQL injection in the template function in host_templates.php via the graph_template parameter.
network
low complexity
cacti
critical
 9.8
9.8
2025-01-27 CVE-2024-54145 SQL Injection vulnerability in Cacti
Cacti is an open source performance and fault management framework.
network
low complexity
cacti CWE-89
8.8
8.8
2025-01-27 CVE-2024-54146 SQL Injection vulnerability in Cacti
Cacti is an open source performance and fault management framework.
network
low complexity
cacti CWE-89
8.8
8.8
2025-01-27 CVE-2025-22604 OS Command Injection vulnerability in Cacti
Cacti is an open source performance and fault management framework.
network
low complexity
cacti CWE-78
7.2
7.2
2025-01-27 CVE-2024-45598 Path Traversal vulnerability in Cacti
Cacti is an open source performance and fault management framework.
network
low complexity
cacti CWE-22
4.9
4.9
2024-10-07 CVE-2024-43362 Cross-site Scripting vulnerability in Cacti
Cacti is an open source performance and fault management framework.
network
low complexity
cacti CWE-79
5.4
5.4
2024-10-07 CVE-2024-43363 Code Injection vulnerability in Cacti
Cacti is an open source performance and fault management framework.
network
low complexity
cacti CWE-94
7.2
7.2
2024-10-07 CVE-2024-43364 Cross-site Scripting vulnerability in Cacti
Cacti is an open source performance and fault management framework.
network
low complexity
cacti CWE-79
8.2
8.2
2024-10-07 CVE-2024-43365 Cross-site Scripting vulnerability in Cacti 1.2.27
Cacti is an open source performance and fault management framework.
network
low complexity
cacti CWE-79
8.2
8.2
2024-05-14 CVE-2024-34340 Incorrect Comparison vulnerability in multiple products
Cacti provides an operational monitoring and fault management framework.
network
low complexity
cacti fedoraproject CWE-697
critical
 9.1
9.1