CVE Vulnerabilities

CVE-2002-1477

Published: Apr 22, 2003 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

graphs.php in Cacti before 0.6.8 allows remote authenticated Cacti administrators to execute arbitrary commands via shell metacharacters in the title during edit mode.

Affected Software

Name Vendor Start Version End Version
Cacti The_cacti_group 0.5 0.5
Cacti The_cacti_group 0.6 0.6
Cacti The_cacti_group 0.6.1 0.6.1
Cacti The_cacti_group 0.6.2 0.6.2
Cacti The_cacti_group 0.6.3 0.6.3
Cacti The_cacti_group 0.6.4 0.6.4
Cacti The_cacti_group 0.6.5 0.6.5
Cacti The_cacti_group 0.6.6 0.6.6
Cacti The_cacti_group 0.6.7 0.6.7
Cacti The_cacti_group 0.6.8 0.6.8

References