paul Posted May 6, 2010 Report Share Posted May 6, 2010 A vulnerability has been found and corrected in cacti: SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter (CVE-2010-1431). Additionally cacti has been upgraded to 0.8.7e for Corporate Server 4. The updated packages have been patched to correct this issue. Link to comment Share on other sites More sharing options...
Recommended Posts