Filter
Software
CactiCacti has a SQL Injection vulnerability when using tree rules through Automation API
6.9
EPSS
0.04%
First published (updated )
CactiCacti allows Arbitrary File Creation leading to RCE
8.7
EPSS
0.04%
First published (updated )
CactiCacti has Authenticated RCE via multi-line SNMP responses
9.1
EPSS
0.04%
First published (updated )
CactiCacti has a SQL Injection vulnerability when request automation devices
6.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CactiCacti has a SQL Injection vulnerability when view host template
7.6
First published (updated )
CactiCacti has a Local File Inclusion (LFI) Vulnerability via Poller Standard Error Log Path
First published (updated )
CactiRemote code execution via Log Poisoning in Cacti
7.2
First published (updated )
CactiStored Cross-site Scripting (XSS) when creating external links in Cacti
8.2
First published (updated )
CactiStored Cross-site Scripting (XSS) when creating external links in Cacti
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CactiStored Cross-site Scripting (XSS) when creating external links in Cacti
7.3
First published (updated )
debian/cactiAuthentication Bypass when using using older password hashes
9.1
EPSS
0.06%
First published (updated )
debian/cactiCacti SQL Injection vulnerability in lib/api_automation.php caused by reading dirty data stored in database
8.8
First published (updated )
debian/cactiCacti RCE vulnerability by file include in lib/plugin.php
8.1
First published (updated )
debian/cactiCacti SQL Injection vulnerability in lib/html_form_templates.php by reading dirty data stored in database
8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
debian/cactiSQL Injection vulnerability in automation_get_new_graphs_sql
8.8
First published (updated )
debian/cactiCacti XSS vulnerability in lib/html.php by reading dirty data stored in database
5.4
First published (updated )
debian/cactiCacti XSS vulnerability in lib/html_tree.php by reading dirty data stored in database
5.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
debian/cactiCacti Cross-site Scripting vulnerability when using JavaScript based messaging API
5.4
First published (updated )
CactiCacti Cross-site Scripting vulnerability when managing trees
7.6
First published (updated )
debian/cactiCacti RCE vulnerability when importing packages
9.1
First published (updated )
CactiSQL Injection vulnerability when managing SNMP Notification Receivers
8.8
First published (updated )
CVE-2023-50250Cross-Site Scripting vulnerability when Import xml template file
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-49086Cacti is vulnerable to cross-Site scripting (XSS) DOM
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.