Vulnerabilities > Cacti
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-22 | CVE-2023-49085 | SQL Injection vulnerability in Cacti Cacti provides an operational monitoring and fault management framework. | 8.8 |
| 2023-12-22 | CVE-2023-49088 | Cross-site Scripting vulnerability in Cacti Cacti is an open source operational monitoring and fault management framework. | 4.8 |
| 2023-12-22 | CVE-2023-50250 | Cross-site Scripting vulnerability in Cacti 1.2.25 Cacti is an open source operational monitoring and fault management framework. | 6.1 |
| 2023-12-22 | CVE-2023-51448 | SQL Injection vulnerability in Cacti 1.2.25 Cacti provides an operational monitoring and fault management framework. | 8.8 |
| 2023-12-22 | CVE-2023-50569 | Cross-site Scripting vulnerability in Cacti 1.2.25 Reflected Cross Site Scripting (XSS) vulnerability in Cacti v1.2.25, allows remote attackers to escalate privileges when uploading an xml template file via templates_import.php. | 6.1 |
| 2023-12-22 | CVE-2023-49086 | Cross-site Scripting vulnerability in Cacti 1.2.25 Cacti is a robust performance and fault management framework and a frontend to RRDTool - a Time Series Database (TSDB). | 5.4 |
| 2023-12-21 | CVE-2023-49084 | PHP Remote File Inclusion vulnerability in Cacti 1.2.25 Cacti is a robust performance and fault management framework and a frontend to RRDTool - a Time Series Database (TSDB). | 8.8 |
| 2023-10-27 | CVE-2023-46490 | SQL Injection vulnerability in Cacti 1.2.25 SQL Injection vulnerability in Cacti v1.2.25 allows a remote attacker to obtain sensitive information via the form_actions() function in the managers.php function. | 6.5 |
| 2023-09-06 | CVE-2023-39511 | Cross-site Scripting vulnerability in multiple products Cacti is an open source operational monitoring and fault management framework. | 4.8 |
| 2023-09-05 | CVE-2023-30534 | Deserialization of Untrusted Data vulnerability in multiple products Cacti is an open source operational monitoring and fault management framework. | 4.3 |