Download
| Alert*
|
oval:org.secpod.oval:def:60425
The host is installed with Cacti through 1.2.7 and is prone to a deserialization of untrusted data vulnerability. A flaw is present in the application, which fails to handle multiple instances of lib/functions.php. Successful exploitation could allow attackers to influence object data values and con ... oval:org.secpod.oval:def:1801646 Cacti through 1.2.7 is affected by multiple instances of lib/functions.php unsafe deserialization of user-controlled data to populate arrays. An authenticated attacker could use this to influence object data values and control actions taken by Cacti or potentially cause memory corruption in the PHP ... oval:org.secpod.oval:def:604683 Multiple issues have been found in cacti, a server monitoring system, potentially resulting in SQL code execution or information disclosure by authenticated users. CVE-2019-16723 Authenticated users may bypass authorization checks for viewing a graph by submitting requests with modified local_graph_ ... oval:org.secpod.oval:def:69940 Multiple issues have been found in cacti, a server monitoring system, potentially resulting in SQL code execution or information disclosure by authenticated users. CVE-2019-16723 Authenticated users may bypass authorization checks for viewing a graph by submitting requests with modified local_graph_ ... oval:org.secpod.oval:def:61491 Multiple issues have been found in cacti, a server monitoring system, potentially resulting in SQL code execution or information disclosure by authenticated users. CVE-2019-16723 Authenticated users may bypass authorization checks for viewing a graph by submitting requests with modified local_graph_ ... |
