The host is installed with Cacti through 1.2.7 and is prone to a deserialization of untrusted data vulnerability. A flaw is present in the application, which fails to handle multiple instances of lib/functions.php. Successful exploitation could allow attackers to influence object data values and control actions taken by cacti or potentially cause memory corruption in the PHP module.