FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

cacti -- potential SQL injection and cross site scripting attacks

Affected packages
cacti <= 0.8.6d

Details

VuXML ID 96948a6a-e239-11d9-83cf-0010dc5df42d
Discovery 2005-06-21
Entry 2005-06-21

iDEFENSE security group disclosed potential SQL injection attacks from unchecked user input and two security holes regarding potential cross site scripting attacks

References

URL http://www.cacti.net/release_notes_0_8_6e.php