Vulnerabilities > Cacti > Cacti > 1.2.12

DATE CVE VULNERABILITY TITLE RISK
2020-06-17 CVE-2020-14295 SQL Injection vulnerability in multiple products
A SQL injection issue in color.php in Cacti 1.2.12 allows an admin to inject SQL via the filter parameter.
network
low complexity
cacti fedoraproject CWE-89
7.2
7.2